TimeOff.Management > User manual > Data security
Data security
Your data security questions answered.
Introduction:
The General Data Protection Regulation (GDPR) is a significant legislative change in European data protection laws, becoming enforceable on May 25, 2018. It aims to strengthen the security and protection of personal data in the EU, and acts as a single piece of legislation for all EU countries.
Data Location:
All data is stored in the UK, on DigitalOcean platform. Please refer to the DigitalOcean GDPR FAQs for further information.
Data Usage:
We will never sell your data.
Data Protection:
We utilize advanced encryption technologies to encrypt all data passing through our TimeOff.Management services during transmission. We use HTTPS to encrypt all data transmitted between you and our services. We also enforce HSTS to ensure that your initial request to our site is also secure. Data can be deleted within the application or the entire account can be deleted.
Data Export:
At TimeOff.Management, we believe in putting our users in control of their data. That’s why we’ve built in backup and reporting tools that allow you to export your data in CSV format, and if you need to, permanently erase it.
Responsible Data Handling and Storage:
We minimize the amount of data we collect and store, ensuring that every piece of data is backed by a justifiable reason. We have implemented strict policies for data retention, and personal data is deleted as soon as it is no longer necessary.
Automated Infrastructure Monitoring:
Our infrastructure is constantly monitored through automated tests to ensure it is always up and running, providing 100% availability. This allows us to regularly evaluate and assess the effectiveness of our measures in maintaining our system’s resilience and reliability.
Secure User Identification and Authorization:
To ensure maximum security, passwords for signing in are hashed and salted using a PBKDF2-based function in accordance with the recommendations of the UK’s National Cyber Security Centre. This means that passwords are securely stored and protected from potential breaches.
Payment Handling:
All payments are handled exclusively by PayPal, and TimeOff.Management does not store any payment information.
Support:
If you have any questions or concerns about security, please do not hesitate to contact our support team. We are always here to help clarify any uncertainties and provide you with peace of mind.
The General Data Protection Regulation (GDPR) is a significant legislative change in European data protection laws, becoming enforceable on May 25, 2018. It aims to strengthen the security and protection of personal data in the EU, and acts as a single piece of legislation for all EU countries.
Data Location:
All data is stored in the UK, on DigitalOcean platform. Please refer to the DigitalOcean GDPR FAQs for further information.
Data Usage:
We will never sell your data.
Data Protection:
We utilize advanced encryption technologies to encrypt all data passing through our TimeOff.Management services during transmission. We use HTTPS to encrypt all data transmitted between you and our services. We also enforce HSTS to ensure that your initial request to our site is also secure. Data can be deleted within the application or the entire account can be deleted.
Data Export:
At TimeOff.Management, we believe in putting our users in control of their data. That’s why we’ve built in backup and reporting tools that allow you to export your data in CSV format, and if you need to, permanently erase it.
Responsible Data Handling and Storage:
We minimize the amount of data we collect and store, ensuring that every piece of data is backed by a justifiable reason. We have implemented strict policies for data retention, and personal data is deleted as soon as it is no longer necessary.
Automated Infrastructure Monitoring:
Our infrastructure is constantly monitored through automated tests to ensure it is always up and running, providing 100% availability. This allows us to regularly evaluate and assess the effectiveness of our measures in maintaining our system’s resilience and reliability.
Secure User Identification and Authorization:
To ensure maximum security, passwords for signing in are hashed and salted using a PBKDF2-based function in accordance with the recommendations of the UK’s National Cyber Security Centre. This means that passwords are securely stored and protected from potential breaches.
Payment Handling:
All payments are handled exclusively by PayPal, and TimeOff.Management does not store any payment information.
Support:
If you have any questions or concerns about security, please do not hesitate to contact our support team. We are always here to help clarify any uncertainties and provide you with peace of mind.