Is data encrypted at rest and during transport?
This applies to all PaySpace editions.
All customer data is stored in South Africa and Europe (DR) and is encrypted at rest.
PaySpace is powered by a single instance, multi-tenant architecture, in which all users and applications share a single, common infrastructure i.e. database and code base, but is logically and unique separated for each customer. Authorisation and security policies ensure that each customer’s data is kept separate from that of other customers using a TenantID, which associates each record across multiple tables with an individual tenant.
All data sent to or from PaySpace services is encrypted in transit using 256-bit encryption or greater.
Our API and application endpoints are TLS/SSL only and score an “A+” rating on SSL Labs’ tests. This means we only use strong cipher suites and have features such as HSTS and Perfect Forward Secrecy fully enabled.
Related Articles
Can a customer's database be accessed by another customer?
This applies to all PaySpace editions. No. PaySpace is powered by a single instance, multi-tenant architecture, in which all users and applications share a single, common infrastructure i.e. database and code base, but is logically and uniquely ...Is PaySpace compliant with the Protection of Personal Information (POPI)Act?
This applies to all PaySpace editions. Due to our stringent commitment to privacy, we have implemented comprehensive measures to ensure compliance with the Protection of Personal Information (POPI) Act. Refer to the PaySpace website for more detail ...Is PaySpace ISO 27001 certified?
This applies to all PaySpace editions. Security is at the core of our business. Therefore, it is essential that we adopt a rigorous control regime to protect both our own information and, importantly, our clients' information. Security is a ...Which report can be generated that will systematically contain employees' non-financial data?
Employees' non-financial data can be analysed on the Dynamic Employee Details Report. Navigate > Reports > Reports > Nextgen > Human Resources Note! Make use of the Additional Fields on the report parameters screen to configure the report to your ...Does Payspace utilise network segmentation to limit access to sensitive data to specific network zones, thereby reducing the risk of a widespread network compromise?
This applies to all PaySpace editions. Payspace utilises network segmentation to limit access to sensitive data to specific network zones, thereby reducing the risk of a widespread network compromise (i.e. users do not have access to the backend). ...