Data Security at LeaveBoard

Data security is of enormous importance to us, and we take vital steps to safeguard your customers’ information.
Our customers' data is encrypted —from login to logout— using bank-grade standards, including 256-bit SSL encryption to keep your account safe.


image

Industry standard security

Your data is transferred with high-grade TLS and multi-layered encryption at rest with AES-128—the industry-standard for commercial applications. Encryption keys are stored separately from the data, and it’s all hosted in our off-site, secure cloud infrastructure.


image

High availability infrastructure

Our server hosting locations are physically secured, staffed 24 hours a day, 7 days a week, 365 days a year by trained security guards who’ve undergone a thorough auditing process. The servers are hosted by OVH in France, recognized with an ISO/IEC 27001 certification and audited to SSAE 16/ISAE 3402 and SOC 2 Type II standard.

We store backups in multiple secure locations and update them throughout the day, every day.


image

Certified data protection

All data is securely stored on servers located in France. We are compliant with the European data privacy laws and regulations. LeaveBoard helps secure sensitive HR data across a full range of environments – from databases to big data, cloud, file systems and more so that HR details are accurate and up to date. To comply with these regulations we have a designated Data Protection Officer.


image

PCI Compliance

Cardholder data is managed in the Braintree, a subsidiary of Paypal, using multiple encryption keys with split knowledge and dual control. Braintree is a validated Level 1 PCI DSS compliant service provider.