As a true cloud platform, KeyPay understands the importance of data security and adheres to strict data protection measures to safeguard information.
KeyPay is ISO/IEC 27001 certified for security and peace of mind over compliance. We maintain certification through extensive audits of controls to ensure that information security risks that affect the confidentiality, integrity, and availability of company and customer information, are appropriately managed.
Here is a copy of our ISO 27001 certificate.
KeyPay’s client data is hosted on Amazon Web Services (AWS), rather than your own servers. If your PC, laptop or tablet gets stolen, your confidential client and employee information will still be kept secure.
KeyPay’s client data is hosted on Amazon Web Services (AWS). All data is hosted in the AWS Asia Pacific (Sydney) region and is PCI compliant. Data is transferred using 256-bit SSL encryption, and all sensitive data is encrypted on disk for added security and privacy.
As part of our ISO certification and obligations, KeyPay has robust disaster recovery procedures in place to respond quickly to potential attacks. We carry out regular drills to maintain these processes. These procedures are confidential in order to ensure success.
In KeyPay, full backups are carried out daily and transaction logs are carried out every 15 minutes. Our backups are also verified and tested on a weekly basis, for added peace of mind.
In March 2022, KeyPay made 2-factor authentication mandatory for both new and existing users in order to encourage additional security measures on client data.
This adds an extra layer of security and neutralises the risk of compromised passwords, as it makes it more difficult to access someone’s account remotely.