Security standards for your data
Privacy and information security are our top priorities. Protecting your information is our top priority. Our security measures comply with the OWASP list of best practices for web security. Here are the key features that ensure your data is kept safe and secure.
-
Our solution is hosted on Microsoft Azure, with the data stored in the Swiss Azure data centre. Microsoft ensures that the latest patches are always installed through continuous updates. The Microsoft data centres are also certified according to various ISO standards.
-
HTTPS access: Access to 2getHR is only possible via HTTPS. This ensures end-to-end encryption between client and server. In addition, only TLS version 1.2 or higher, which is considered secure, is allowed. Other connections will be rejected.
-
Database encryption: The entire database is encrypted at all times using Transparent Data Encryption. This makes it virtually impossible to access unencrypted data in the unlikely event of a data leak.
-
Firewall protection: Azure cloud firewall settings prevent direct access to data resources from outside the Azure cloud.
-
Two-factor authentication: We offer two-factor authentication using tokens (Google Authenticator) or fingerprint. This protects against unauthorised access in the event of a lost password.
-
Bot protection: Access by robots/bots is prevented by advanced server-side detection methods and captchas.
-
Client isolation: Each tenant is located in a completely isolated data room, making cross-client access impossible