
Last updated: June 27, 2022
Openprise is SOC 2 Certified
Openprise is committed to the security of your data in transit and at rest. We adopt data and network security best practices to ensure your data is secure and only authorized users have access to it.
Hosting and Physical Security
You can read further about AWS SOC 2 security and certifications here: aws.amazon.com/security/
Isolation of Services
Network Security
All network access, both within the data center and between the data center and outside services, is restricted by firewall and routing rules. Network access is logged and logs are retained for a minimum of 30 days.
Administrative Access
Data Encryption
Data Access
By default, all services and all data are available to all users within your company account. The data security policies are subtractive policies. Each policy layer acts as a filter to restrict users’ access to data. You can enable any of these 3 security layers independently.
- Access policy – The first level of security is controlling users’ access to the services. You can choose to restrict access by organization.
- Data ownership policy – Once a user has access to a service, the second level of security controls what subset of data each user is allowed to see. You can set policies to filter data for users from each organization.
- Data redaction policy – Once a user can see data, the third level of security controls how each attribute is presented to users. For example, you can mask social security numbers or scramble employee IDs.
User Visibility
Authentication
Resetting a password requires access to a user’s registered email and the reset action is time limited.
Excessive failed login attempts will result in an account being automatically locked out.
If a session becomes inactive for a period of time, the user is automatically logged out and is required to authenticate again.