Data Security at LeaveBoard

Data security is of enormous importance to us, and we take vital steps to safeguard our customers' information.
Our customers' data is encrypted - from login to logout - using bank-grade standards, including 256-bit SSL encryption to keep your account safe.

Industry-standard security

Your data is transferred with high-grade TLS and multi-layered encryption at rest with AES-128, the industry-standard for commercial applications. Encryption keys are stored separately from the data, and it is all hosted in our off-site, secure cloud infrastructure.

High availability infrastructure

Our server hosting locations are physically secured, staffed 24 hours a day, 7 days a week, 365 days a year by trained security guards who have undergone a thorough auditing process. The servers are hosted by OVH in France, recognized with an ISO/IEC 27001 certification, and audited to SSAE 16/ISAE 3402 and SOC 2 Type II standard.

We store backups in multiple secure locations and update them throughout the day, every day.

Certified data protection

All data is securely stored on servers located in France. We are compliant with European data privacy laws and regulations. LeaveBoard helps secure sensitive HR data across a full range of environment - from databases to big data, cloud, file systems, and more so that HR details are accurate and up to date. To follow these regulations, we have a designated Data Protection Officer.

Read more about GDPR

PCI Compliance

Cardholder data is managed in the Braintree, a subsidiary of PayPal, using multiple encryption keys with split knowledge and dual control. Braintree is a validated Level 1 PCI DSS compliant service provider.