Tikit Carpe Diem secure cloud via Microsoft Azure

Tikit Carpe Diem is a cloud-based enterprise time recording system hosted in B2B Azure Activity Directory to ensure second-to-none security and availability worldwide.

By partnering with Microsoft Azure, you can be confident that safeguards to protect your data and meet regulatory compliance requirements are baked into the network architecture with secure data centres for complete peace of mind.

Secure storage

  • Tikit Carpe Diem is a multi-tenant web application that includes its own identification layer.
  • All tenants have their own logically separate database which can be configured for the client’s individual requirements.
  • Transparent Data Encryption of all databases, backups and transaction logs (Encryption-at-rest).
  • All database connection strings are encrypted.
  • Multiple instances of primary resources.
  • Network security –database IP firewall rules. Only accessible from whitelisted IP addresses.
  • Access controls –single admin user access.

Secure transport

  • All Tikit Carpe Diem web applications can only be accessed through HTTPS –secured with SSL certificates.
  • HSTS (HTTP Strict Transport Security) enforced.
  • Minimum encryption version of TLS 1.2 enforced.
  • Only works from browsers with Server Name Indication (SNI) support.
  • Access controls –single admin user access.
  • Transparent Data Encryption (Encryption-at-rest).
  • Transport Layer Security (Encryption-in-transit).
  • Network security –database IP firewall rules. Only accessible from white-listed IP addresses.
  • Load balancing to distribute web traffic to available and least used resources.

Secure access

  • Users are authenticated against the firm’s Azure Active Directory.
  • On-premise ADFS can be used to federate security authentication.
  • Authorisation is performed against license keys and Tikit Carpe Diem specific admin/user privileges.
  • Supports multi-factor authentication.
  • Access controls –single admin user access.

Data back-up

  • Database transaction logs backed-up every 10 minutes.
  • Databases fully backed up every 12 hours –35-day retention of backups.
  • Long-term (up to 10 years) backup retention with geo-replication available if required.

Microsoft Azure meets a broad set of international and industry-specific compliance standards:

  • GDPR compliant.
  • Security controls externally validated by SOC 1 and SOC 2.
  • ISO 27001 certified solution.
  • FedRamp (Federal Risk and Authorization Management Program)
  • The only Legal timekeeping solution approved for inclusion in the UK Governments UK G-Cloud.
  • Regular penetration testing for external threats and irregularities.