- Using Australian servers means that data is subject to local laws, including prevailing Privacy legislation. Data stored on servers in third countries is not subject to Australian law meaning that data may be sold to third parties or not held in a suitably secure environment. Iplanit data is stored locally in each country we operate, here in Australia our data is stored on advanced data servers located at a leading Tier III facility in Melbourne.
- Encrypted data translates data into another form, or code, so that only people with access to a secret key (formally called a decryption key) or password can read it. This prevents hackers from intercepting and accessing data. Iplanit uses encrypted Cookies which means that data is not stored on local computers once the internet browsing session is complete; ensuring that all data is maintained only on the secure server.
- Partitioning ensures that all data for one ‘instance’ (usually one organisation) is fully segregated from all other hosted clients. The hosted service should be configured so that each customer has their own instance of the system, stored in its own unique folder on a secure server. All iplanit systems are stored individually and are fully partitioned.
- Penetration testing is an authorized simulated attack on a computer system, performed to evaluate the security of the system. Your SaaS vendor should be able to provide information regarding penetration testing and confirm the security status of the system. iplanit testing has been carried out by independent third-party security experts including NDS Secure (part of the NCC Group) in the UK and Lateral Security, the leading independent security consultants in New Zealand, confirming the ongoing credentials of iplanit's security credentials.
These are just a few of the security measures that your SaaS vendor can reassure you of, others include password encryption, authenticaiton, related protocols and hosting service levels. If you would like to know how iplanit can assist you to securely and successfully manage client data while operating under the NDIS join our regular webinar.
Keeping client information safe
With many moving parts, combined with the needs of internal and external stakeholders, choosing the right technology system is hard. Of the many aspects you should be considering when choosing a data management system security should always be at the forefront. We have detailed some key security elements which are essential for maintaining data in the online/cloud-based world and we reccommend you make them a part of your system deliberations: