Single Sign On & OAuth Login
For increased security and a simpler login process we support Single Sign-On with SAML, we have set up the most popular cloud-based identity providers including Azure Active Directory, OKTA, OneLogin and G-Suite or you can use your own internal providers, for example, Active Directory Federation Services.
Or simply allow your employees to login using the tools they use every day, we support login via Slack, G-Suite and Office 365.
Secure Cloud Hosting
Workstars’ servers are hosted by Amazon Web Services (AWS), who also host some of the internet’s most popular services including Netflix, Pinterest, Slack, Workday, Zendesk, Reddit, Airbnb and Docker.
For more information about AWS data centers, access controls, reliability, disaster recovery and security controls, please visit the following links:
As well as the standard AWS security controls, all Workstars web servers are physically and logically separated from our database servers (where our customer data is stored). Application and database servers are protected by firewalls and intrusion detection systems which are monitored 24/7. Access is restricted to only the people who required access and all access is logged and monitored.
To find a SaaS product that gives us the usual benefits of a quick, easy and cost-effective system to launch, whilst also being able to accommodate our complex requirements and security needs was beyond our expectations.
We take the security of your data extremely seriously and utilize multiple layers of protection, including:
All connections between your browser and our servers are made via 256-bit SSL encryption using only the latest ciphers.
You can add multiple scheme administrator accounts and restrict what can and can’t be accessed. All access is logged for a minimum of 90 days.
All Workstars employee logins are protected by two-factor authentication. This is also available on the client administration portal.
You can choose a low, medium or high password complexity for your employees or you can implement Single Sign-On with SAML for maximum security.
All sensitive files that you upload are encrypted with client-specific keys using AES-256 which are regularly rotated.
Development and staging environments are separated physically and logically from the Production environment. No actual customer data is used in the development or test environments.
Our developer team are trained on the OWASP Top 10 security flaws and our application is regularly scanned for vulnerabilities.
The source code repositories for Workstars are continuously scanned for security issues by static code analysis tools.
Our web application undergoes an annual web application penetration test which is available to our clients upon request.