One Platform for Complete Workforce Control Learn More

DocumentationHelp CenterLegal

Security & Compliance Statement

Last Updated: February 9, 2026Version 1.0 

1. Infrastructure Security 

OfficeOne Solution is hosted entirely on Microsoft Azure, leveraging enterprise-grade infrastructure with physical security controls, redundant systems, and global availability. 

2. Data Encryption 

  • At Rest:  AES-256 encryption via Azure Storage and Azure SQL 
  • In Transit: TLS 1.3 for all data transmission 
  • Backups: Encrypted, geo-redundant backups with point-in-time restore 

3. Authentication & Access Control 

  • Azure Active Directory integration with SSO support 
  • Multi-Factor Authentication (MFA) enforcement 
  • Role-Based Access Control (RBAC) 
  • Least privilege principle for all system access 
  • Automatic session timeout 

4. Compliance Standards 

  • SOC 2 Type in Progress 
  • GDPR Compliant 
  • CCPA Compliant 
  • ISO 27001Roadmap 

5. Incident Response 

We will maintain a documented incident response plan. Security breaches are investigated immediately with affected customers notified within 72 hours as required by GDPR. 

6. Vulnerability Management 

Regular penetration testing, automated vulnerability scanning, and a responsible disclosure program is in place. 

Security Questions:  [email protected]

Acceptable Use PolicyCookie Policy