Our Commitment. Your Security.
"Data privacy and security are not just a part of our business; it's at the very heart of everything we do. HRlogics is deeply committed to safeguarding employees' data and living up to our commitment to being an integrity-first compliance partner. This SOC 2 compliance achievement underscores our commitment to data security and accountability," — Jeff Gill, Chief Information Officer.
HRlogics Security Counsel:
- Jeff Gill, Chief Information Officer
- Kathryn Modeer, Chief Legal Officer
- Bill Dixon, CISO, ISACA CDPSE Certified
Integrity-First Compliance Partner
HRlogics' robust data security gives you confidence that your data is safe with stringent processes. We apply hundreds of security processes and controls to help us comply with industry-accepted standards, regulations, and certifications. Clients often choose HRlogics because, unlike many other vendors, we do not engage in the repurposing or sale of personal data. We believe that data privacy and security are fundamental rights. Operating on the principle of 'Least Permission' (POLP), HRlogics prioritizes the confidentiality and protection of your sensitive information.
Product Security
We've developed straightforward, repeatable processes to help our development teams incorporate security into our products and services. Additionally, we maintain an ongoing security training program to keep our teams current with the latest security innovations in our company and the industry.
HRlogics operates on the principle of 'Least Permission,' which is a cybersecurity best practice that limits access to valuable data and assets.
Operational Security
We have intentionally structured our operations to prioritize and maintain optimum levels of security and continuous compliance.
As part of this commitment, we allocate significant resources towards enhancing our core operational security platform, thus ensuring a consistent and robust application of security controls across all our solutions.
Security Certifications & Standards
SOC I & SOC2 TYPE II
HRlogics has completed a Service Organization Control (SOC) 2 Type II certification. This significant milestone highlights HRlogics' dedication to data privacy, security, and unwavering compliance standards.
AWS Data Security
All data is stored in highly secure AWS data centers. AWS employs state-of-the-art, physical security measures, including strict access controls, biometric authentication, and round-the-clock surveillance to protect its data centers.
CAN-SPAM
HRlogics ensures strict compliance with CAN-SPAM laws, guaranteeing that all email communications sent through their platform adhere to the regulations, safeguarding the privacy and preferences of their recipients.
PCI DSS
HRlogics is compliant with the requirements of the Payment Card Industry Data Security Standard (“PCI DSS”).
California Consumer Privacy Act (CCPA)
HRlogics' privacy policy complies with CCPA requirements. For our valued clients potentially subject to the CCPA, we are happy to present a Services Agreement Amendment that solidifies our position as a "Service Provider" under the CCPA's explicit definition.
General Data Protection Regulation (GDPR)
HRlogics refrains from handling the personal data of European Union residents. However, we remain committed to collaborating with our clients to resolve any inquiries or issues related to GDPR compliance they may encounter..
NIST 800-53 Framework
At HRlogics, we take security seriously, and we've embraced a Zero Trust framework to safeguard your sensitive information. Rooted in the fundamental principle of "Never Trust, Always Verify," this approach serves as a robust blueprint for safeguarding identities and securing data within today's intricate multi-cloud-enabled enterprises. We're proud to implement the NIST 800-53 framework as a foundational pillar of our Zero Trust strategy. By adhering to these stringent standards, we proactively defend against the ever-evolving and complex threat landscape, ensuring that your data remains in safe hands. We understand that the path to achieving such a level of security can be challenging, but with our commitment and the NIST 800-53 framework as our guide, we strive to make it a reality for your peace of mind.
What Is a Zero Trust Framework?
The Zero Trust framework operates on the core principle of "Never Trust, Always Verify." It serves as a strategic plan for safeguarding identities and fortifying data security within modern multi-cloud-enabled enterprises. This approach takes a proactive stance in defending against the ever-growing and intricate threat landscape.
HRlogics Security & Privacy Policy
In our unwavering commitment to safeguarding your privacy, we provide this informative disclosure, elucidating HRlogics' online information practices and the choices available to you regarding the collection and utilization of your data. To ensure easy access, this notice is readily available on our homepage and anywhere you might be prompted to provide personally identifiable information. This notice pertains to all information collected or submitted through the HRlogics website.
The Information We Gather
While you explore our website, your IP address, the internet address of your device, is logged to enable us to gain insights into your interaction with our platform. Additionally, your web browser may automatically share details about your computer and operating system, which we use for the ongoing enhancement of our website. This information is never associated with you as an individual user. On certain pages, you have the option to request services, make inquiries, and register to receive materials. The personal information we collect on these pages encompasses your name, address, email, phone number, fax, and billing information. To personalize our services and tailor our communications to your preferences, we may also request voluntary information about your personal or professional interests, demographics, prior experiences with our services, and contact preferences.
Our Utilization of Information
HRlogics employs this information to gain a deeper understanding of your requirements and provide superior service. Specifically, we utilize your data to assist in transaction completion, facilitate communication with you, update you on services and advantages, and customize our website to suit your needs. Periodically, we may employ your information for market research or to provide details about other HRlogics services that may be of particular interest to you. Rest assured, we always provide you with the opportunity to opt out of receiving direct marketing or market research communications. You can exercise this right at any time. Your personal information will never be used or disclosed for purposes unrelated to those described above without granting you the option to opt-out or restrict such unrelated uses.
Managing Your Information
At any point, you can request a summary of the personal information held by HRlogics. You also have the option to ask us to delete any or all personal information related to you, except for information essential for transaction fulfillment or record-keeping. To help us maintain the accuracy of your information, please notify us of any changes to your personal details.
How to Reach Us
Should you have any questions or concerns regarding this Privacy Statement or the handling of your personal information, please don't hesitate to contact us via email at info@hrlogics.com. HRlogics welcomes your feedback and suggestions concerning this Privacy Statement, as we remain steadfast in our commitment to respecting your privacy and safeguarding your personal information.
Your Consent to These Terms
By using the HRlogics website, you signify your consent to this Privacy Statement. HRlogics reserves the right to modify this Privacy Statement at any time, and any revisions will be posted on this site. Kindly revisit this page periodically to stay informed of any changes.
