HirePOS Data Management and Security

Edited

This document outlines the comprehensive security measures and data protection practices implemented by Innercircle Technology Pty Ltd (HirePOS) to safeguard your business data.

Security Mechanisms and Approach

Innercircle Technology Pty Ltd prioritizes the privacy and security of your business data by adhering to industry best practices. Your data is securely stored using Microsoft Azure cloud infrastructure located in Australian data centers.

Microsoft Defender for Cloud

We utilize Microsoft Defender for Cloud to monitor security alerts and provide advanced threat protection for all Azure resources, including SQL databases, containers, web applications, and virtual networks. This tool detects unusual access attempts and malware uploads, ensuring comprehensive defense for our cloud environment.

Firewalls

Azure SQL Servers at HirePOS are safeguarded by firewall rules that restrict network traffic solely to the HirePOS web applications within the same data center. Data modifications are only permitted through direct user actions within the HirePOS applications.

Regulatory Compliance

All resources hosted by HirePOS on Microsoft Azure infrastructure comply with various regulatory standards such as PCI DSS 3.2.1, ISO 27001, and SOC TSP. The infrastructure undergoes continuous monitoring to maintain compliance.

Data Storage

Data Encryption

Your information is encrypted using industry-standard methods both in transit and at rest to protect personal and financial data. TLS/SSL encryption is employed for data in transit.

Databases and Data Segregation

HirePOS data is stored in separate Azure SQL Databases for each client subscription, ensuring data segregation and integrity. Each subscription has its own SQL database instance hosted in the Australia East location.

Backups

To prevent data loss and aid in disaster recovery, HirePOS Databases are backed up regularly through full, differential, and transaction log backups. Backup data is stored in geo-redundant storage blobs for enhanced protection.

Disaster Recovery

Data redundancy mechanisms are in place to protect against various events, ensuring data availability even in the face of hardware failures or natural disasters. Data is stored in geo-redundant storage blobs across multiple regions for disaster recovery purposes.

Users and Data Access

User Authentication

HirePOS supports Microsoft Single Sign-On (MS SSO) and Google Single Sign-On for enhanced security. Users are encouraged to enable multifactor authentication for added protection.

User Behavior and Practices

User practices significantly impact data security. Users are advised to use multifactor authentication, create strong passwords, maintain malware protection, and avoid sharing passwords.

Data Access

Your organization's data is secure, and access is restricted unless explicitly authorized. HirePOS team members access data only with permission and under your supervision.

Service Reliability, SLA, and Uptime

HirePOS v5 Cloud relies on the reliable Microsoft Azure infrastructure with a typical uptime of 99.9%. While no system guarantees 100% uptime, we follow best practices to minimize downtime risks.