Security


HRMS Security

From storing, transferring, accessing, backing up, monitoring, to testing & reviewing our security procedures, every aspect is covered to meet industry best practice standards.

Data Privacy and Data Access

Our success hinges on providing a safe and trustworthy environment for your subscription data. Protecting your data is our obsession, which involves a cross-functional approach with initiatives big and small. Here’s an overview of the major themes of our privacy and security protocols.

GDPR Compliance

StromHRM maintains compliance with the EU’s General Data Protection Regulation and maintains product features, corporate protocols, and legal documents to help our users and customers comply.

Application security

In-transit Encryption

Sessions between you and your portal are protected with in-transit encryption using 2,048-bit or better keys and TLS 1.0 or above. Users with modern browsers will use TLS 1.2 or 1.3.

Web Application and network firewalls

StromHRM monitors potential attacks with several tools, including a web application firewall and network-level firewalling. In addition, the StromHRM platform contains Distributed Denial of Service (DDoS) prevention defenses to help protect your site and access to your products.

Software development lifecycle (SDLC) Security

StromHRM implements static code analysis tools and human review processes in order to ensure consistent quality in our software development practices.

Datacenter Protections

Physical security

StromHRM products are hosted with cloud infrastructure providers with SOC 2 Type II and ISO 27001 certifications, among others. The certified protections include dedicated security staff, strictly managed physical access control, and video surveillance

Patch management

StromHRM’s patch management process identifies and addresses missing patches within the product infrastructure. Server-level instrumentation ensures tracked software packages use the appropriate versions.

Security incident response

StromHRM’s security incident process flows and investigation data sources are pre-defined during recurring preparation activities and exercises and are refined through investigation follow-ups. We use standard incident response process structures to ensure that the right steps are taken at the right time.

Audits, Vulnerability Assessment & Penetration Testing

Vulnerability assessment

StromHRM tests for potential vulnerabilities on a recurring basis. We run static code analysis, and infrastructure vulnerability scans.

Penetration testing

StromHRM leverages 3rd party penetration testing firms several times a year to test the StromHRMproducts and product infrastructure.

External audit & certification

StromHRMconducts regular external audits and certification

Resiliency and Availability

99.99% Uptime

StromHRM’s availability is consistently above 99.99%. Customer data is 100% backed up to multiple online replicas with additional snapshots.

24x7x365 Monitoring

Our product and operations team monitor application, software, and infrastructure behavior using proprietary and industry recognized solutions.

Data Center Redundancy

StromHRM maintains multiple failover instances to prevent outages from single points of failure.

Disaster Recovery

StromHRM has robust controls in place to recover data and application code in shortest time. Recovery Point Objective (RPO) and Recovery Time Objective (RTO) when applied for data within same geography is 5 seconds and 1 Hour respectively. We have 45 days point in time restoration which allows us to restore any desired date and time within these last 45 days. RPO and RTO when applied for data stored in different geography in the unlikely event of a natural disaster is 12 hours and 1 hour respectively

Strom

Word Strom

Strom is a German word, english meaning is current, flow, electricity, type of energy which results from the existence of charge particles.
StromHRM is based on these ideas to enable human resources become charge particles for the business, which results in growth, empowerement and ownership of the roles employees are engaged with.

Inspiration

Proactive Engagement

Give your workforce a system they can access anywhere. StromHRM is for SMEs giving same features which coorporate industry uses at a much affordable rates.

Impact

Business Impact

Create explosive reports that demonstrate the impact HR is making on your organisation’s success, and employee engagements over a selected period of time.