Only users with a valid and verified company email address can join your PlanMyLeave company account.
Only a senior Database administrator has Access to the customer data. The Database administrator provides access to support staff on a case by case basis when support requests come from customers. All access is logged and regularly audited.
PlanMyLeave is hosted in US Amazon Web Services Cloud. It is hosted in AWS US East data centers with 24/7/365 video surveillance, biometric and pin-based locks, strict personnel access controls and detailed visitor entry logs. Here are are some of the security features AWS takes to protect your data.
All rights to your data are maintained by you. We provide you the ability to easily export your data and take it elsewhere, if desired.
All data in transit into and out of the production environment is encrypted at all times. Communication with PlanMyLeave is over HTTPS (TLS 1.2 supported) regardless of user endpoint (web, desktop app, mobile app, API). In addition to being encrypted in transit, All personal data of users are encrypted at rest with AES-256 bit key encryption.
PlanMyLeave does not permit customers to perform on‐site audits. With customers all over the world, this is not feasible, and it is also a risk to the security of the service. We will answer any security questions openly and transparently.
No. PlanMyLeave does not mine or sell any customer data. All data belongs to the customer (either the user or the organization).
PlanMyLeave is a true multi-tenant model. Customers’ data is logically separated with strict controls to ensure separation of tenant data. The web application servers of PlanMyLeave are physically and logically separated from servers that store customer data.
In PlanMyLeave, verified admins can export all user data, employee leave information and Leave balances messages
By leveraging Amazon web services Cloud, we can provide the following
PlanMyLeave is now eight years old, and there has been no report of breach or leak of customers data out of PlanMyLeave. The company behind PlanMyLeave is 15 years old, and this company has worked with pharmacies in the US for the past 14 years. The confidentiality of patient data was never compromised even once during this time. The company has also worked with fortune 500 companies like Farmers Insurance and Enterprise Rent-A-Car in the past.
Yes, we use AWS WAF to address issues like the OWASP Top 10 security risks
Yes, we use AWS Shield to protect our applications
Yes, our infrastructure provider (AWS) has both ISO 9001 and ISO/IEC 27001:2013 certifications.