From storing, transferring, accessing, backing up, monitoring, to testing & reviewing our security procedures, every aspect is covered to meet industry best practice standards.
Our success hinges on providing a safe and trustworthy environment for your subscription data. Protecting your data is our obsession, which involves a cross-functional approach with initiatives big and small. Here’s an overview of the major themes of our privacy and security protocols.
StromHRM maintains compliance with the EU’s General Data Protection Regulation and maintains product features, corporate protocols, and legal documents to help our users and customers comply.
Sessions between you and your portal are protected with in-transit encryption using 2,048-bit or better keys and TLS 1.0 or above. Users with modern browsers will use TLS 1.2 or 1.3.
StromHRM monitors potential attacks with several tools, including a web application firewall and network-level firewalling. In addition, the StromHRM platform contains Distributed Denial of Service (DDoS) prevention defenses to help protect your site and access to your products.
StromHRM implements static code analysis tools and human review processes in order to ensure consistent quality in our software development practices.
StromHRM products are hosted with cloud infrastructure providers with SOC 2 Type II and ISO 27001 certifications, among others. The certified protections include dedicated security staff, strictly managed physical access control, and video surveillance
StromHRM’s patch management process identifies and addresses missing patches within the product infrastructure. Server-level instrumentation ensures tracked software packages use the appropriate versions.
StromHRM’s security incident process flows and investigation data sources are pre-defined during recurring preparation activities and exercises and are refined through investigation follow-ups. We use standard incident response process structures to ensure that the right steps are taken at the right time.
StromHRM tests for potential vulnerabilities on a recurring basis. We run static code analysis, and infrastructure vulnerability scans.
StromHRM leverages 3rd party penetration testing firms several times a year to test the StromHRMproducts and product infrastructure.
StromHRMconducts regular external audits and certification
StromHRM’s availability is consistently above 99.99%. Customer data is 100% backed up to multiple online replicas with additional snapshots.
Our product and operations team monitor application, software, and infrastructure behavior using proprietary and industry recognized solutions.
StromHRM maintains multiple failover instances to prevent outages from single points of failure.
StromHRM has robust controls in place to recover data and application code in shortest time. Recovery Point Objective (RPO) and Recovery Time Objective (RTO) when applied for data within same geography is 5 seconds and 1 Hour respectively. We have 45 days point in time restoration which allows us to restore any desired date and time within these last 45 days. RPO and RTO when applied for data stored in different geography in the unlikely event of a natural disaster is 12 hours and 1 hour respectively
Strom is a German word, english meaning is current, flow, electricity, type of energy which results from the existence of charge particles.
StromHRM is based on these ideas to enable human resources become charge particles for the business, which results in growth, empowerement and ownership of the roles employees are engaged with.
Give your workforce a system they can access anywhere. StromHRM is for SMEs giving same features which coorporate industry uses at a much affordable rates.
Create explosive reports that demonstrate the impact HR is making on your organisation’s success, and employee engagements over a selected period of time.