Within Simplicate, great importance is attached to the security and reliability of the software. This is determined by a large number of factors, which are explained below in bullet points.

Since early 2023, our software and business operations have been ISO 27001 certified, the globally recognized standard in the field of information security.

A copy of our certificate and Statement of Applicability can be found here.

Simplicate uses encryption for all connections to and from the software by means of a 2048-bit SSL certificate, secured by SHA256withRSA authentication and encryption. The software can only be accessed via this encrypted HTTPS connection.

Via this link from SSL Labs, you can check the current rating of our SSL certificates for your environment. On that page, enter the address of your environment to perform the test: [environment].simplicate.nl

All traffic to our servers is monitored by our high-end WAF (web application firewall). This professionally keeps out, for example, bots, DDoS attacks, XSS attacks, CSRF attacks, etc.

For this, we use the services of Cloudflare, one of the largest players in the cloud industry. They also provide these types of services to banks and insurance companies.

We take security and data privacy very seriously at Simplicate. In the design of our software, we have therefore made a number of important choices:

We have designed our architecture so that all customer environments are physically separated. We have built our application platform in a fully containerized manner, with application containers per customer, ensuring that customers operate entirely within their own environment. In addition, each customer has their own separate database, preventing any mixing of data in all situations.

We create secure daily back-ups of data across multiple separate locations.

In addition to a username and password, we support multi-factor authentication. We advise every customer to make use of this. It is also important to mention that all passwords are encrypted and stored in the database using a one-way hash.

The Processor’s servers and network connections operate on the basis of Amazon Web Services (AWS) cloud services. The AWS cloud operates from secure data centers with state-of-the-art (electronic) security.

The location of the primary data center is in Ireland, with Germany as the redundancy location. Both countries fall entirely within European legislation.

The Processor has also concluded a Data Processing Agreement with AWS.
AWS is certified, among others, according to:
ISO/IEC 27001:2013, 27017:2015, 27018:2019, 27701:2019, 22301:2019, 9001:2015, CSA STAR CCM v4.0, SOC 1, SOC 2 and SOC 3.
​
For server access, the Processor exclusively uses secure connections and has strictly controlled access to servers via Single Sign-On with multi-factor authentication.

Would you like more information about the security of Simplicate? Then click on this page.