Skip to main content

HirePOS Security

HirePOS Guides14. Tips, Tricks and FAQsData Compliance

HirePOS Security

Security Approach

Innercircle Technology Pty Ltd is committed to following industry best practices for the privacy and security of your business data. Your data is stored securely using Microsoft Azure cloud infrastructure, in Microsoft data centres located in Australia.

Regulatory Compliance

All Innercircle Technology Pty Ltd (HirePOS) resources hosted in the Microsoft Azure cloud infrastructure pass all compliance regulatory standards for PCI DSS 3.2.1ISO 27001, and SOC TSP.

Azure Defender

Innercircle Technology Pty Ltd is subscribed to Microsoft's Azure Defender offering, which notifies us of security alerts, and provides advanced threat protection for all of our Azure resources, which includes but is not limited to, all SQL databases, containers, web applications, and virtual networks. Azure Defender also detects unusual attempts to access storage accounts and malware uploads to Azure Storage, and provides comprehensive defenses for the compute data, and service layers of our cloud environment. In addition, Vulnerability Assessment scans are run weekly and we are notified of any potential vulnerabilities that may exist.

Data Access

We know that your data security is paramount, and we keep your information private. No one has access to your organisation’s data unless you request them to access your account. If you need help with a feature in HirePOS, you can choose to let one of our team members view your data while they help you, with your agreed permission.

User Authentication

Single Sign On utilises the identity infrastructure provided by Google to add extra layers of security to help protect your account. You can require all users and admins to register for multi-factor authentication (MFA) through your Google accounts, which we strongly encourage. Once a user has signed in to HirePOS using the Google identity provider, this authentication method will be enforced, and the user is required to sign on with Google rather than the traditional web application username and password.

Automated Backups

Data is stored in geo-redundant storage blobs that are primarily stored in the Australia East region and replicated with the paired Australia Southeast region. The Microsoft Azure infrastructure automatically creates full SQL database backups every week, differential backups every 12-24 hours, and transaction log backups every 5 to 10 minutes. Storage redundancy mechanisms store multiple copies of your data so that it is protected from planned and unplanned events, including transient hardware failure, network or power outages, or massive natural disasters. Azure SQL Database and Azure SQL Managed Instance retain sufficient backups to allow PITR (point-in-time restore) within the last 7 days. If your hardware device is lost, stolen or broken, your account is backed up and protected online in the cloud, which means you can log in from any device with an internet connection and you're good to go.

​Data Encryption

Your information is converted into unrecognisable code using industry-standard data encryption, both in transit and at rest. This protects your personal and financial data.

Service Reliability

The service uptime of HirePOS v5 Cloud is limited by the underlying infrastructure provided by Microsoft Azure, which is incredibly reliable and resilient with a typically expected uptime of 99.9%.

There is no 100% guarantee with any system, and we encourage you to have a backup plan in the case of any unexpected outages. HirePOS v5 Cloud is dependent on a reliable internet connection, and your backup plan should mitigate any potential network outages by allowing an easy switch over to an alternate internet source. For example, easily switch to 4G wireless when your NBN wired network is unavailable.

We do not provide a formal SLA (Service Level Agreement) as such, however, we adhere to the following best practices to greatly reduce risk of downtime.

The HirePOS v5 web application runs on a premium service plan designed for production workloads and uses the recommended minimum of three app server instances at all times. This allows web page requests to be routed to a server that is best able to handle the request should any server problems occur.

Our development cycle ensures that any updates progress through a series of staging slots and are never pushed through to the live production app directly. Once an update is passed through the development and testing phase, we typically allow clients to log into a beta site to test any new features directly before they are finally honored to the live production app. In the case that an unexpected bug is revealed as a result of the update, we are able to swap the app back to its previous state within less than a minute.