Security at Splose
Splose is committed to keeping your data secure and private.
Proactive security measures
Data encryption
Data is encrypted via SSL in transit and encrypted at rest using industry-standard AES-256 encryption.
Data residency
Your data will be stored in Australia in line with Government regulations for Australian users, with plans to invest in cloud storage in the UK, US and Canada for our international customers.
Data backups
We create daily backups of your data, encrypt it and store it securely off-site. All data is stored redundantly at multiple AWS data centres to ensure availability.
Physical security
Web hosting in secure state-of-the-art AWS data centres with restricted physical entry, data access logs, CCTV, intrusion detection and controlled entry points.
External security testing
In addition to our internal security testing, we employ third-party firms to conduct vulnerability assessments. Results are prioritised, triaged, and remediated by our development team.
User login history
Splose automatically records every login session, helping users and admins to monitor usage and identify any unusual behaviour.
Features that protect your privacy
Human error prevention
Progress notes and invoices are auto-saved, alerts prevent users from leaving pages with unsaved information and deleted files can be restored within 30 days.
Dedicated workspace URL
Every provider chooses a unique Splose workspace URL where all users log in. Your workspace URL gets used for online forms, online bookings and more.
Spam prevention
Set up SMS verification in online bookings and prevent fake and unwanted online bookings by sending a one-time SMS code for clients to verify.
Password protection & 2FA
All users are required to create a strong password to use Splose. 2FA is available for all users and provides an extra layer of security.
Account security roles
Decide who can access certain data in your workspace by assigning account roles for practice manager, practitioner admin, practitioner, receptionist and accountant.
Activity changelog
Change log provides an overview of the changes made, the time of changes and the user who made the changes.
Compliance with Australian-standards

Australian Privacy Principles (APP)
Splose helps you meet your obligations under the Australian Privacy Principles. Included is the handling of personal information, including consent to your privacy policy and marketing communication.
We pick our partners carefully
AWS for Data storage accreditations
Our data storage provider AWS has achieved ISO 27001 (Information Security Management System) certification.
Stripe for PCI Level 1 Compliance
Our payment provider Stripe has achieved PCI Level 1 Service Provider in the handling of credit card information.