Enterprise-Grade Security
Your data security is
our priority!
Our priority is to make you feel as much secure as possible while using Day Off. We follow top-notch industry-leading practices to protect our users’ data. We partner with experts to validate our security, privacy, and compliance controls.
How Day Off keeps your data secure
Six layers of protection built into the foundation of our platform.
Data Transfer & Encryption
Our dedication extends beyond leave tracking. Data is safeguarded during transmission via TLS and at rest using robust SSL 256-bit encryption, the same choice as highly sensitive organizations and banks.
Secure Development
We blend manual and automated security assessments throughout development. This meticulous approach ensures potential weaknesses are addressed proactively from the ground up.
Employee Trainings
All employees undergo mandatory security training. Access to customer data is strictly limited, requiring explicit permission and only for necessary support purposes.
Hosting & Storage
World-class infrastructure
Our hosting providers are AICPA, SOC 2 Type II, and SOC 3 Type II certified. This international acknowledgement showcases our dedication to safeguarding confidential customer and corporate data.
Disaster Recovery
Reliable Backup Procedures
Your data is backed up daily with a Recovery Point Objective (RPO) of 24 hours. Procedures undergo frequent testing to ensure service operates at full capacity, even in unforeseen events.
Secure Payments
Day Off diligently adheres to the Payment Card Industry Data Security Standard (PCI DSS) to ensure the utmost security in its payment processes. We use Stripe, designed to encrypt and protect data from transmission to storage.
PCI DSS COMPLIANT
