At Flare HR we recognise the sensitivity of your data and take our obligation to protect your data very seriously. Flare HR conducts regular external security audits using a certified information security organisation. A web application firewall is also employed and actively managed to mitigate any potential security risks.
The Flare HR solution is hosted on the Microsoft Azure cloud platform, in Sydney NSW. As part of the Azure hosting solution, Microsoft conducts regular penetration testing on targeted infrastructure components. These tests are carried out by both Microsoft’s experienced internal security teams as well as a number of external vendors. Security is of the utmost priority during the development of Azure’s infrastructure components.
Windows Azure employs a rigorous Common Engineering Criteria. Windows Azure holds the following external certifications, including but not limited to: ISO 27001, SSAE 16, PCI DSS, FedRAMP. There are several other Azure security components which are employed by Flare HR solution. Security alerts raised are immediately actioned by Flare HR. To date no threats or issues have been identified.
All data is hosted physically in Australia in Microsoft Azure, with primary servers in Sydney and secondary servers in Victoria. Flare takes all reasonable steps to protect personal information from misuse, interference and loss, as well as unauthorised access, modification or disclosure and we use a number of physical, administrative, personnel and technical measures to protect your personal information.
Access to the hosting platform and production database is tightly controlled, with highly restricted access to security credentials.
Flare HR’s database is mirrored in real time to an alternate data centre in Victoria. In the event of a total failure at the primary data centre, we can switch to the alternate data centre within a two-hour time frame.