You own your data and we take the responsibility of protecting it seriously.
Enterprise security procedures
To keep all your work secure, Splose encrypts data at rest and in transit. During transit, data is encrypted via SSL and encrypted at rest using industry-standard AES-256 encryption.
Your data will be stored in Australia in line with Government regulations for Australian users, with plans to invest in cloud storage in the UK, US and Canada for our international customers.
We create daily backups of your data, encrypt it and store it securely off-site. All data is stored redundantly at multiple AWS data centres to ensure availability.
Data is hosted in secure state-of-the-art AWS data centres with restricted physical entry, data access logs, CCTV, intrusion detection and controlled entry points.
External security testing
In addition to our internal security testing, we employ third-party firms to conduct vulnerability assessments. Results are prioritised, triaged, and remediated by our development team.
User session recording
Splose automatically records every login session, helping users and admins to monitor usage and identify any unusual behaviour.
Best-in class security features
Human error prevention
Treatment notes and invoices are auto-saved, alerts prevent you from leaving pages with unsaved information and deleted files can be restored within 30 days.
Dedicated workspace URL
Your business receives a dedicated Splose URL where your team members must log in from. Your unique Splose URL also forms part of your online bookings page.
We help prevent fake and unwanted online bookings by sending a one-time SMS code for clients to verify in order to complete their booking.
Password protection & 2FA
All users are forced to create an extremely strong password in order to use Splose. You can also set up 2FA which provides an extra layer of security for your account.
Account security roles
Decide who can access certain data in your workspace by assigning account roles for practice manager, practitioner admin, practitioner, receptionist and accountant.
All major features in Splose have revision history which provide an overview of the changes made, which user made changes and when they were made.
Internationally recognised compliance and privacy standards
Australian Privacy Principles
GDPR (In progress)
We’re actively working on our company policies and product features to help provide full compliance with GDPR. We estimate within one month, but we’ll send an announcement across Splose when we’re ready.
Data storage accreditations and certifications
Our data storage provider Amazon Web Services (AWS) has achieved ISO 27001 (Information Security Management System) certification.
PCI Level 1 Compliance
Our payments provider Stripe, who we use to manage your subscription, has achieved PCI Level 1 Service Provider in the handling of credit card information, which is the highest level of assessment available.