Your electronic onboarding is
safe and secure with WorkBright

Data protection used by Top-tier financial institutions

Protected. Monitored. Restorable.

HR data should always be kept confidential. That’s why we focus so much on protecting our customer’s data. To that end, we have built and implemented many of the same security and privacy controls used by top-tier financial institutions. On top of that, we regularly re-evaluate and test our security measures to ensure we align with industry standards & best practices.

Data protection used by Top-tier financial institutions

Protected. Monitored. Restorable.

HR data should always be kept confidential. That’s why we focus so much on protecting our customer’s data. To that end, we have built and implemented many of the same security and privacy controls used by top-tier financial institutions. On top of that, we regularly re-evaluate and test our security measures to ensure we align with industry standards & best practices.

Discover the magic in your tailored hr software demo

Enriched Employee Experience

Encryption

Data transmitted between your browser and our application is encrypted using bank-grade 256-bit SSL certificates.
Sensitive data stored in our database is encrypted using bank-grade 256-bit AES encryption.
Account passwords are stored using one-way encryption so they can never be accessed in plain text (even by us).
Each customers’ data is sandboxed in a unique, protected database environment.

App and Systems Security

We stay up-to-date on security patches and fixes from our vendors.
We follow industry best practices against man-in-the-middle attacks, injection attacks, and cross-site request forgery.
Only individually-authorized computers (such as those from our Engineering Team) can access our production servers.
We implement strict firewall and authentication rules on all of our production machines.

Data Backup

Production data is automatically and continuously backed up to multiple, separate locations.
We maintain daily backup records for the last 2 weeks of time, while our
database enables us to perform point-in-time recovery.
Backup data is protected using the same safeguards we employ for our regular production environment.
We host our infrastructure on Amazon data centers. More information on their Security practices can be reviewed here: Amazon Web Services: Overview of Security Processes

Audit Logs and Monitoring

We maintain comprehensive audit logs covering all customer and user transactions, systems access, and network operations.
Passwords, social security numbers, and other sensitive information are automatically stripped out from log files and audit records.
We monitor our infrastructure 24×7 using a combination of third-party monitoring services and in-house tools.

Discover the magic in
your tailored hr software demo

Enriched Employee Experience

Encryption

Data transmitted between your browser and our application is encrypted using bank-grade 256-bit SSL certificates.
Sensitive data stored in our database is encrypted using bank-grade 256-bit AES encryption.
Account passwords are stored using one-way encryption so they can never be accessed in plain text (even by us).
Each customers’ data is sandboxed in a unique, protected database environment.

App and Systems Security

We stay up-to-date on security patches and fixes from our vendors.
We follow industry best practices against man-in-the-middle attacks, injection attacks, and cross-site request forgery.
Only individually-authorized computers (such as those from our Engineering Team) can access our production servers.
We implement strict firewall and authentication rules on all of our production machines.

Data Backup

Production data is automatically and continuously backed up to multiple, separate locations.
We maintain daily backup records for the last 2 weeks of time, while our
database enables us to perform point-in-time recovery.
Backup data is protected using the same safeguards we employ for our regular production environment.
We host our infrastructure on Amazon data centers. More information on their Security practices can be reviewed here: Amazon Web Services: Overview of Security Processes

Audit Logs and Monitoring

We maintain comprehensive audit logs covering all customer and user transactions, systems access, and network operations.
Passwords, social security numbers, and other sensitive information are automatically stripped out from log files and audit records.
We monitor our infrastructure 24×7 using a combination of third-party monitoring services and in-house tools.

Ensuring Protection and Reliability

Operational Security

Vendor Restricted

Our application is built and maintained entirely in-house by our core Engineering Team. Outside vendors never have access to any part of our code, databases, or application infrastructure.

Engineer Exclusive

Database and server access is restricted to Engineering Team members on a strict need-to-know basis.

Client Aligned

We trust our own sensitive HR information to our application, making sure our security and privacy priorities never become misaligned with our customers’.

Ensuring Protection and Reliability

Operational Security

Vendor Restricted

Our application is built and maintained entirely in-house by our core Engineering Team. Outside vendors never have access to any part of our code, databases, or application infrastructure.

Engineer Exclusive

Database and server access is restricted to Engineering Team members on a strict need-to-know basis.

Client Aligned

We trust our own sensitive HR information to our application, making sure our security and privacy priorities never become misaligned with our customers’.

Multi-Factor Authentication

What is it?

An optional security enhancement requiring administrators to verify their identity using a secondary device in addition to knowing their password .

Why Use it?

An optional security enhancement requiring administrators to verify their identity using a secondary device in addition to knowing their password .

Every security measure short of lasers

What is SOC2 Type 2 Compliance?

WorkBright is SOC 2 Type II certified which guarantees that a data processor will handle your company’s private details properly. In basic terms, it’s an auditing procedure that ensures your data is properly managed.

What is the difference between Type I and Type II? A SOC 2 Type 1 is an audit done at a point in time, Type 2 is audit done over the entire year.

While a SOC 1 audit from your vendor helps provide your management with assurances regarding vendor controls that are likely to be relevant to an audit of your financial statements, the SOC 2 audit provides additional assurances regarding vendor controls that relate to operations and compliance relevant to one or more of the following five principles: security, availability, processing integrity, confidentiality, and privacy.