Strengthening Security and Data Protection for a Global Real Estate Platform

DBB Software implemented robust security measures and performance safeguards for JLL's commercial real estate platform, achieving GDPR compliance across European markets and optimizing server infrastructure to serve millions of users from just two frontend instances.

Industry

Real Estate & Property Management

Service

Infrastructure Services

Team

2 Backend Developers, 1 Frontend Developer, 1 QA Engineer

Project State

March 2020 - Ongoing

Country

United States

About the Client

Our client, Jones Lang LaSalle (JLL), is a global leader in commercial real estate services. As a Fortune 500 company, JLL provides property management, investment management, and development services across 80 countries, employing over 91,000 people. Their goal is to shape the future of real estate with innovative, technology-driven solutions.

jll.com

The Client's Initial Request

JLL engaged DBB Software to strengthen the security posture and data protection capabilities of its commercial real estate platform, ensuring compliance with international regulations while maintaining high performance for a global user base:

Data Privacy Compliance

Implement GDPR-compliant data handling across all European markets to meet regulatory requirements for user data protection.

API Security Hardening

Protect platform endpoints against abuse and injection attacks through rate limiting and input validation measures.

Connection Optimization

Improve server-side connection management to reduce infrastructure costs while maintaining reliability for millions of concurrent users worldwide.

Data Architecture Governance

Establish a secure data normalization layer using Azure data warehouse to ensure consistent, protected handling of sensitive property and user information.

Solutions We Delivered

DBB Software delivered a comprehensive security and infrastructure optimization initiative, hardening JLL's platform against threats while dramatically improving connection efficiency to support millions of global users:

GDPR Compliance Implementation

Configured data handling policies, user consent mechanisms, and privacy protocols across the platform to meet EU data protection requirements. These measures ensured that sensitive property and personal data served to European markets are processed in full compliance with GDPR regulations.

API Rate Limiting and Injection Prevention

Configured rate limiting across all API endpoints and implemented input validation and injection prevention on the FastifyJS backend. These safeguards protected the platform against abuse, brute-force attacks, and common injection vectors.

Connection Optimization with Keep-Alive Agent

Implemented a keep-alive agent that manages port connection reuse for incoming end-user requests, replacing the default open-and-close behavior per request. This reduced the required NextJS frontend instances to just two while serving millions of users globally.

Secure Data Normalization Layer

Built a data normalization pipeline using Azure Data Warehouse alongside AzureDB and CosmosDB, with access controls and encryption applied across the stack. This enabled consistent, secure processing of property data from multiple regional sources.

Results Achieved

Full GDPR Compliance Achieved

Successfully implemented data privacy protocols meeting EU regulatory requirements across all European markets, enabling JLL to operate confidently in GDPR-regulated regions without compliance risk.

Dramatic Infrastructure Reduction

Optimized connection handling reduced the number of frontend server instances to just two, serving millions of users worldwide and significantly lowering infrastructure costs while maintaining platform reliability.

Strengthened API Security

Rate-limiting and injection-prevention measures hardened the platform against common attack vectors, protecting sensitive real estate data and user information from unauthorized access.

Millions of Users on Minimal Infrastructure

The keep-alive connection optimization enabled just two frontend server instances to reliably handle millions of users worldwide, proving that the platform could scale without proportional infrastructure growth.

Scalable Data Protection Architecture

Established a secure, normalized data layer across Azure services that supports consistent data governance as the platform expands into new markets and handles growing data volumes.

Secure Your Platform for Global Compliance and Scale

Protect sensitive data and meet international regulations while optimizing infrastructure for millions of users.

Book a call