Security & Compliance

Swiss-hosted, nDSG-compliant, encrypted end-to-end. Built to meet the highest standards of Swiss data protection and enterprise security.

Data Protection

BackOffice is fully compliant with the new Swiss Federal Act on Data Protection (nDSG) and EU GDPR. Data is hosted in Switzerland, encrypted at rest and in transit, and a Data Processing Agreement (DPA) is available for all customers.

Authentication

lockStrong passwords — enforced complexity rules, breach database check
phonelink_lockTwo-factor authentication — TOTP (Google Authenticator, Authy) for all users
vpn_keySSO (Enterprise) — SAML 2.0 and OIDC for corporate identity providers
history_toggle_offSession management — automatic logout after inactivity, device revocation

Audit Trail

Every action in BackOffice is logged with user, timestamp, and change details. The audit log is immutable and retained per your compliance policy. Export to CSV for external audits.

Infrastructure

Primary infrastructure runs in Swiss data centers (Infomaniak, Exoscale). Daily encrypted backups, 99.9% uptime SLA, DDoS protection, and 24/7 monitoring. GCC region deployment is available on request.

arrow_backIntegrations System Requirementsarrow_forward