Timecloud Security Measures

Cyber Security Badge Icon. Shield with a lock in it.
SOC 2 T1 Logo

System and Network Security

At Timecloud, the security of our systems and networks is a top priority. As a SOC 2-certified organization, we adhere to a trusted security framework designed to protect customer data from unauthorized access, security breaches, and other vulnerabilities. To ensure the highest protection level, we conduct regular penetration tests conducted by a reputable cybersecurity firm. Our consultants are certified in OSCP, SABSA, CISA, CISSP, and PCI-QSA, guaranteeing a thorough evaluation of our entire product suite.

We employ Automated Threat Detection through AWS Guard Duty, Web Application Firewalls, and robust DDoS protection measures to fortify our defences. Continuous monitoring and assessment against industry standards, including AWS Foundational Security Best Practices (FSBP), CIS, PCI DSS, and NIST, help us maintain a vigilant stance against potential threats. All our servers undergo regular updates with the latest patches and security fixes.

Date Transfer Icon. Computer screen with arrow pointing up to a cloud.

Data Transfer

Your data's security during transfer is of utmost importance to us. We exclusively use HTTPS (TLS 1.2+) for all data transfers and routinely rotate our digital certificates, ensuring the highest level of encryption and authentication.

Data Storage Icon. Padlock underneath a cloud.

Data Storage

We meticulously safeguard your data at rest through encryption for added protection. Customer data is securely hosted in AWS us-west data centres, with regular backups stored across different regions for redundancy and quick recovery. Our backup retention strategy includes daily, weekly, and yearly intervals.

IT Practices Icon. Computer screen with two cogs coming out of the top of it.

IT Practices

We follow the principle of Least Privilege, granting access to customer data only to authorized personnel. IT equipment is kept up to date with the latest security patches, and maintenance schedules from software vendors are strictly followed to ensure system integrity.

Data Storage Icon. Padlock underneath a cloud.

MFA

To enhance authentication security, we have implemented Multi-Factor Authentication (MFA) and employ Single Sign-On (SSO) across multiple services, streamlining access management and reinforcing overall security.

Commitment to Excellence in Security

These comprehensive security practices underscore our commitment to safeguarding your data and ensuring the reliability and integrity of Timecloud services. We prioritize transparency and accountability, continuously adapting and evolving our security measures to address emerging threats. Your trust in Timecloud is essential, and we are dedicated to upholding the highest security standards in every aspect of our operations.

HR business man and woman holding clipboard and pens