Security

We take the security of our customer data very seriously. For more info, please contact info@wizcal.me.

Identity and Access Management

At WizCal we use role based access control (RBAC) for enabling employee access to all of our service resources. This follows the principle of least privilege when granting access, which means that we only grant the level of access to employees that is required to do their job. Additionally all employees need multifactor authentication to sign into to WizCal systems. All access to our service is logged and audited, we use Azure Active Directory to track access and authenticate and authorize access to resources. Access to our databases is logged and audited for suspicious activity.

Since WizCal clients communicate with our service using email notifications, we use enhanced email protection with DKIM and DMARC to check for trusted authenticated senders.

Infrastructure Security

Our service is hosted on Microsoft Azure Cloud. Microsoft Cloud is protected at the physical, network, host, application, and data layers , which makes online services resilient to attack. Continuous proactive monitoring, penetration testing, and the application of rigorous security guidelines and operational processes further increase the level of detection and protection throughout the Microsoft Cloud. You can learn more about Microsoft's cloud platform here.

Encryption

All data stored in our data bases is encrypted in storage and backups. On top of that we use additional layer of encryption for sensitive information like authentication tokens or credentials, which is additional protection and also prevents exposure of sensitive data in database queries. All network communication to and from our service is encrypted using SSL/TLS.

Security Development Lifecycle

We follow the Security Development Lifecycle (SDL), which is a software development process that helps developers build more secure software and address security compliance requirements. For more information refer to this link.