Security and data
So how is your data stored?
TimeLog’s hosting platform is located at the data center GlobalConnect A/S.
As your data security is of utmost importance for us, GlobalConnect’s data center off course live up to the high international demands and is ISAE 3402 approved.
-> Learn how TimeLog's ISAE 3402 report keep your data safe in this FAQ
Furthermore, our servers are under constant surveillance at Global Connect’s Operations & Maintenance Center (OMC) in Taastrup, Denmark, and we have a status of our servers 24/7.
Below you can read more about the technical setup around your data.
At GlobalConnect, the data center is designed with the Tier classifications as point of departure, which means that the data center has:
- Redundant diesel generator which starts in case of a power cut
- Fire safety (aspiration system and Inergen / Argonite)
- Redundant cooling systems
- UPS to secure power stability
- Surveillance with an array of technical alarms and censors
- Security control (personal access card, finger scanner, code)
- Video surveillance
TimeLog continuously work to improve and enhance safety on all areas - from encryption and backup to program codes and the servers' data handling.Christoffer Lanstorp, Head of Product Management
Besides being a Tier 3 supplier, Global Connect also has all necessary certifications like ISO27001, ISO9001, ISO3000, ISAE3402(+type 2).
You may read more about GlobalConnect here.
Constant and quick data access
Our hosting platform is an active-passive platform. This means that there is an active hosting center, which you access, and then a replication to the passive, which is at a different address. If the primary hosting center breaks down, the passive takes over. The risk of data loss is therefore extremely small, and it will max. be one hour of entries in TimeLog.
TimeLog’s hosting platform has a guaranteed 99.9% uptime (ex. planned downtime).
Back up and data storage
The back up files are stored at a different physical address than the database server and are easily retrievable and restorable in case of an emergency.
Our database servers are virtual and operate on a central data storage unit, allowing us to easily restore previous server data in the event of downtime.
Even by eradication of our primary data center, we ensure a minimal loss of data of max. one hour, and we are capable of recreating your solution in the secondary data center.
The back up process
We have several back up strategies in place. We perform full customer data back ups every night and store them for 7 days. We also store weekly back ups for 6 months.
The weekly back ups are done each Saturday. Furthermore, we perform ad-hoc back ups before we do general software patches and specific data scripting tasks. We do server snapshot back ups daily.
The TimeLog application code is handled in source control (git) and automatically backed up at every change.
Can I access my own data?
You can always access your private data; we do not employ vendor lock-ins. Your data belongs to you, and they are accessible to you at any time, regularly or as back ups.
It is also possible, for payment, to receive a security back up of your data on an ongoing basis. To learn more about this option, your data responsible need to contact our Support department via firstname.lastname@example.org.
You select a data responsible in TimeLog, as you are the data controllers, and we are the data processor according to GDPR. It is only this person, who can contact us regarding changes to your data.
Read more about GDPR and TimeLog.
TimeLog is accessed via an encrypted connection (HTTPS/SSL), and the encryption happens with the VeriSign certificate.
The encryption level is the same as that of several online banking systems. SSL encryption means that data transmitted between a registered user and TimeLog’s systems are encrypted to prevent unauthorised parties from picking up the transmission or parts thereof.
You are always welcome to contact us via email@example.com, if you have questions about the data security in TimeLog.