Our new support login location can be found below.
Our new support login location can be found below.
Cybersecurity threats are a reality for virtually all businesses. That’s why PrismHR maintains a multifaceted security approach to safeguard the data of HR service providers and the clients they support.
PrismHR’s security approach has maintained SOC 2 compliance since 2018, and we continue to strengthen our security protections and business continuity processes.
PrismHR maintains System and Organization Controls Type 2 (“SOC 2”) compliance. This means PrismHR has demonstrated to an independent auditor that the PrismHR platform is designed to keep our customers’ data secure.
PrismHR employs multiple features to prevent unauthorized access to the system and your data, including multi-factor authentication, strict password rules, IP address control and role-based security.
Our platform is actively monitored 24/7/365 to protect against data breaches and cyberattacks. Access to your HR technology requires a secure connection. And PrismHR’s data is encrypted before being sent to or stored in the cloud to prevent it from being captured while in transit or at rest.
PrismHR is hosted in a private cloud at a leading enterprise cloud provider, as well as industry standard public cloud providers. Our cloud providers adhere to the latest security, control and performance standards including ISO 27002 and 27001, PCI-DSS, SSAE16, SOC 1, 2, and 3 compliance, and Privacy Shield and Content Protection and Security Standard requirements. Hosting providers are subject to regular third-party audits, making PrismHR’s security stronger every day.
PrismHR maintains and regularly tests business continuity, incident response and disaster recovery plans. This process is designed to detect, resolve, and guide recovery from a security breach and identify opportunities for improvement.
PrismHR is committed to continuous security improvements and implementing learnings that increase our security posture beyond our existing high standard. That includes adding new state-of-the-art security tools and procedures.
