Talk to an Expert
Log In
Workpapers Sorted SMSF Sorted SMSF Automation

ISO 27001 certification

At Cloudoffis, safeguarding your data is our top priority. We are proud that we have achieved ISO 27001 certification, the internationally recognised standard for information security management systems (ISMS).

What Does This Mean for You?

ISO 27001 certification demonstrates our commitment to the highest standards of data security. This certification ensures that:

  • Comprehensive Risk Management: We have a robust framework in place for identifying, assessing, and managing risks to your data.
  • Continuous Improvement: We are dedicated to continually improving our security measures to adapt to evolving threats and technologies.
  • Trust and Compliance: Being ISO 27001 certified means that we follow best practices in information security, giving you confidence that your data is in safe hands.
ISO-27001-logo-eturia

Our Security Measures

In addition to our ISO 27001 certification, Cloudoffis employs a variety of security measures to protect your data, including:

  • Encryption: All sensitive data is encrypted both in transit and at rest to prevent unauthorised access.
  • Access Control: Strict access control policies ensure that only authorised personnel have access to your data.
  • Incident Response: Our dedicated incident response team is always ready to address and mitigate any security incidents swiftly and effectively.

We are committed to maintaining the highest level of data security for our clients. Our ISO 27001 certification is a reflection of our ongoing efforts to protect your information and provide you with peace of mind.

Data Security

Our secure data practices enhance your customers ‘ trust in you
 

At Cloudoffis, data security is our top priority throughout our operations

Our commitment to safeguarding the personal data of both you and your customers is reflected in every aspect of our system design and architecture.
Below, we outline our data storage, ownership, security measures and disaster recovery procedures, designed to keep you and your clients information safe, 24/7.

Where is the data stored?

All customer data, including production data, is stored in Australia.
We utilise Amazon Web Services (AWS) servers in Australia, ensuring your data remains within the country.
AWS is ISO 27001 compliant, adhering to international standards.

Who owns the data?

The customer, or Cloudoffis subscriber, is the sole owner of their data.
Only customers with proper authentication have access to their data, ensuring data privacy and ownership rights.

How is data secured?

Below, we outline our data storage, ownership, security measures and disaster recovery procedures, designed to keep you and your clients information safe, 24/7.

data-security-icon1
Encryption

Data is encrypted both in transit and at rest, maintaining its confidentiality.

data-security-icon2
Distributed Storage
Data is stored in a distributed way, ensuring it’s only accessible by authenticated users through the Cloudoffis platform.
data-security-icon3
Secure coding
Our product engineering team follows secure coding practices to prevent vulnerabilities, in line with the OWASP Top 10 guidelines.
data-security-icon4
Role-Based Access
Employees, managers, and administrators have role-based access levels, ensuring that users can only view data relevant to their responsibilities.
data-security-icon5
Infrastructure Security
Access to our infrastructure is highly restricted, with advanced security protocols and protective measures, including web application firewalls.
data-security-icon6
Penetration testing
Regular third-party penetration tests are conducted to identify and rectify any potential vulnerabilities
data-security-icon7
Segregated Environments
We maintain separate environments and databases for different stages of product development.
data-security-icon8
Proactive Maintenance

We proactively patch and update our infrastructure to safeguard against vulnerabilities.

data-security-icon9
Monitoring
Our IT infrastructure is monitored using enterprise-grade tools to detect issues early and take corrective action.
data-security-icon10
Multi-Factor Authentication
We offer MFA capabilities on every user account to enhance security.
data-security-icon11
Data Transmission Security
We encrypt data transmission with TLS 1.2 or improved versions, providing secure communication

Backup and Disaster Recovery

We ensure the availability and reliance of our systems through AWS’s managed services
 
data-security-icon12
Data Backup

AWS’s backup services provide dynamic offsite backups, disaster recovery, and multiple site synchronisation

data-security-icon13
Minimal Data Loss
In the event of a disaster recovery event, the maximum period of modified data that could be lost is 15 minutes
data-security-icon14
Rapid Recovery

Our disaster recovery plan ensures that data and services can be restored within a maximum of 1 hour

data-security-icon15
Regular Testing
Our disaster recovery procedures are rigorously tested on a quarterly basis to guarantee their effectiveness

Your Privacy

Review our privacy policy for more information.

If you have any further questions about the security of the data stored in Cloudoffis, please get in touch at support@cloudoffis.com.au and we will happily share more information.

Products
Talk to an Expert
Book Demo
Resources
For Auditors
For Auditors
Talk to an Expert
Talk to an Expert