Data privacy and security

Our CJIS-compliant platform was built with security and trust from day one. It’s in our DNA. Peregrine’s robust end-to-end security controls ensures law enforcement data is safe from external intrusions and appropriately accessed and actioned only by agency authorized department personnel.

Data security and privacy

Peregrine’s platform unifies and secures all of our customers’ data — helping them work more effectively, while protecting the privacy of their citizens and building public trust.

Cyberattacks are increasingly common, and police departments are not immune. In fact, law enforcement departments are frequent victims of ransomware attacks. Christian Quinn, former commander of Fairfax County, Va.’s Cyber and Forensic Bureau and chair of the International Association of Chiefs of Police (IACP)’s Subcommittee on Cyber, notes that “people’s lives are at stake,” when it comes to cyber risks.

As a technology platform that involves public safety and sensitive information, privacy and security are integral to our mission. We know that for the public to view us as genuine, accountable, trustworthy, and transparent, we have to live those values every day.

Our CJIS-compliant platform was built with security and trust from day one. It’s in our DNA. Peregrine’s robust end-to-end security controls ensures law enforcement data is safe from external intrusions and appropriately accessed and actioned only by agency authorized department personnel.

Multi-layered platform security

Peregrine’s unique capability to integrate all of a public safety agency’s data into one platform enables siloed information to be brought together to help users find facts that were previously unattainable. With Peregrine, public safety organizations can better serve their communities, but such powerful capabilities call for equally strong security measures across every aspect of the platform.

First, we have fine-grained permission controls to ensure users are processing data in accordance with rules, regulations, and organizational policies. There are multiple and varying permissions, so users only access, use, share, or other- wise interact with real-time data in ways for which they have authorization.

Imagine two local departments are collaborating to address homicides across their jurisdictions. If one department has a case file with sensitive personally identifiable information that should only be accessed by their personnel for whatever reason, access to that data is automatically restricted when the case file is shared.

In practice, this keeps data private and secure on a user-by-user basis. If information from certain data sources should only be accessed by analysts and command staff, it’s easy for organizations to ensure that’s the case. If certain data should only be accessed from within a police department — as opposed to at home or on mobile devices — that’s simple to do in Peregrine.

Like any organization using data, public safety organizations leverage Peregrine to analyze information, which means it’s not enough to restrict sensitive data only where it’s accessed. That’s why we developed consistent, always-on security controls that are applied to each data record that propagate throughout Peregrine any time data records are moved, transformed, or processed. Data always remains within Peregrine and under the agency’s control, so no matter how data is leveraged, the original intent of the privacy and security restrictions stay intact.

As an added layer of security, the platform is fully traceable and auditable. Peregrine logs all user actions that take place within the platform and maintains granular audit trails that allow authorized agency administrators to review and analyze all user activity, providing comprehensive visibility to ensure compliance with federal, state, and local regulations as well as agency policies.

Peregrine protects privacy as a priority. Want to know more about security? Get in touch.

About Eric Wood

Eric Wood currently works as a Solutions Engineer at Peregrine. Prior to joining the team, Eric served as Director of the Automated Regional Justice Information System (ARJIS) to modernize, optimize and refocus their practices, investments and technology strategy.

Prior to ARJIS, Wood worked in local law enforcement focusing on security and compliance, capability modernization and connected officer initiatives. While at Microsoft, Wood focus was on Windows Infrastructure and network security, client solutions, industry embedded solutions (kiosks and handheld devices), Identity and Access management, solution architecture, and project management. He has architected solutions for several industries under different compliance requirements such as PCI-DSS (Retail), HIPAA (Health Care), CJIS (Criminal Justice).

With over 15 years at Microsoft as a Principal Consultant, Wood consulted Fortune 100 businesses including McDonald’s, Kohl’s Department Stores, American Airlines, ConocoPhillips, U.K. Ministry of Defense, ExxonMobil, Halliburton, KBR, AIM Investments, USAA, Dell Computers, and more on innovative, large scale and complex projects in the U.S. and abroad.