Security

Splose is committed to keeping your data secure and private.

Proactive enterprise security measures

Data encryption

To keep all your work secure, Splose encrypts data at rest and in transit. During transit, data is encrypted via SSL and encrypted at rest using industry-standard AES-256 encryption.

Data residency

Your data will be stored in Australia in line with Government regulations for Australian users, with plans to invest in cloud storage in the UK, US and Canada for our international customers.

Data backups

We create daily backups of your data, encrypt it and store it securely off-site. All data is stored redundantly at multiple AWS data centres to ensure availability.

Physical security

Data is hosted in secure state-of-the-art AWS data centres with restricted physical entry, data access logs, CCTV, intrusion detection and controlled entry points.

External security testing

In addition to our internal security testing, we employ third-party firms to conduct vulnerability assessments. Results are prioritised, triaged, and remediated by our development team.

User session recording

Splose automatically records every login session, helping users and admins to monitor usage and identify any unusual behaviour.

State-of-the-art features to help protect your privacy

Human error prevention

Treatment notes and invoices are auto-saved, alerts prevent you from leaving pages with unsaved information and deleted files can be restored within 30 days.

Dedicated workspace URL

Your business receives a dedicated Splose URL where your team members must log in from. Your unique Splose URL also forms part of your online bookings page.

Spam prevention

We help prevent fake and unwanted online bookings by sending a one-time SMS code for clients to verify in order to complete their booking.

Password protection & 2FA

All users are forced to create an extremely strong password in order to use Splose. You can also set up 2FA which provides an extra layer of security for your account.

Account security roles

Decide who can access certain data in your workspace by assigning account roles for practice manager, practitioner admin, practitioner, receptionist and accountant.

Activity changelog

All major features in Splose have revision history which provides an overview of the changes made, the time of changes and the user who made the changes.

Internationally recognised compliance and privacy standards

Australian Privacy Principles

Splose helps you meet your obligations under the Australian Privacy Principles in the handling of personal information, such as the right to record consent to your privacy policy and marketing communication.

GDPR (In progress)

We’re actively working on our company policies and product features to help provide full compliance with GDPR. We estimate within one month, but we’ll send an announcement across Splose when we’re ready.

Data storage accreditations and certifications

Our data storage provider Amazon Web Services (AWS) has achieved ISO 27001 (Information Security Management System) certification.

PCI Level 1 Compliance

Our payments provider Stripe, who we use to manage your subscription, has achieved PCI Level 1 Service Provider in the handling of credit card information, which is the highest level of assessment available.

We use cookies and similar technologies to operate and secure our website, provide customer support and analyse website traffic. To read more, see our Cookie Policy.

You consent to the use of our cookies if you proceed.

Read more