PayrollHero Security

securityWe value our customer’s security and work hard to ensure that our platform and procedures are focused on security of our clients data. A PayrollHero account contains all employee information and confidential material. For that reason, we take security, encryption, and system permissions very seriously.

Below we have listed a complete guide of our security processes for your reference.

User Security

  • Mutual Non-Disclosure Agreement

At the onset of our business relationship, we sign a mutual non-disclosure agreement as part of our commitment to your company confidentiality.

  • Password Strength Policy

We have a Password Strength Policy which ensures that a PayrollHero user will be able to log in with high security measures.

We require all passwords to use the following:

– One lowercase letter
– One uppercase letter
– One number
– 8 characters in total for password length

  • Two Factor Authentication Log In

As an added layer of security for users, we have implemented a Two Factor Authentication (2FA) log-in, which makes logging in more safe and secure.

With 2FA, users are blocked from sharing passwords – giving the user complete ownership and responsibility for his or her personal account.

Every time a user logs in, they get a time-based, one-time password to authenticate the log in process. This password changes every time you log in, and only you, the user, will be able to know this generated password.

To enable 2FA, you would need a device, usually a smartphone, and an app to generate these one-time use passwords. Here are some of our recommended apps:

Click here for a complete guide on how to set up Two Factor Authentication for your PayrollHero account.

Platform Security

  • Encryption at Rest

All data within PayrollHero is encrypted in transit and at rest, meaning that it is not only encrypted when moving from application to application but it is also encrypted when idle.

  • HTTPS

All communication in and out of the PayrollHero platform is done through HTTPS. “Hypertext Transfer Protocol Secure (HTTPS) is a communications protocol for secure communication over a computer network, with especially wide deployment on the Internet”.

** For both security and non-security incidents, we have employ an urgent and critical process that brings a certain priority level to the team. There is an incident commander appointed during any of these incidents and is responsible for involving the necessary resources. 

Architecture

The PayrollHero System is designed to only expose access to customer facing services. All other access requires an encrypted administrator connection.

  • Only vetted senior staff members have access to production data.
  • All access requires encrypted access to the system.
  • All access to the system requires either an encrypted VPN connection or two factor authentication to access anything.
  • All access to production data is logged.
  • All systems are isolated from each other, regularly replaced, and security patches are applied as soon as they are available.

Customer data is stored on a multi-tenant environment, as such it does exist within the same databases. Extreme care is taken to never allow customer data to get mixed up.

The PayrollHero system is designed to deal with server failures. We perform offsite backups, and frequent onsite backups. We also have an offline mode for the clock in/out feature.

If you want to learn how to use TeamClock while offline, click here for a quick tutorial.

Servers

In an effort to ensure that all your data is kept secure, we only use one of the best names in server and cloud computing – Amazon.

Technically speaking, we secure our data with the following services.

PayrollHero utilizes AWS Services that are ISO 27001 and PCI DSS L1 Certified:

  • Amazon Web Services Elastic Compute Cloud (EC2)
  • Amazon Web Services Simple Storage Service (S3)
  • Amazon Web Services Relational Database Service (RDS)
  • Amazon Web Services Elastic Load Balancing (ELB)
  • Amazon Web Services Identity and Access Management (IAM)
  • Amazon Web Services Elastic Block Storage (EBS)

PayrollHero will use commercially reasonable efforts to make the PayrollHero platform available with a monthly uptime percentage of at least 99%, in each case during any monthly billing cycle (the “Service Commitment”). In the event PayrollHero does not meet the Service Commitment, You will be eligible to receive a Service Credit as described below.

Service Level Agreement

Service Credits are calculated as a percentage of the total charges paid by you (excluding one-time payments such as upfront payments) for the monthly billing cycle in which the platform was unavailable.

  • If the monthly uptime percentage drops below: 99%
  • Service Credit Percentage: 20%
  • Service Credits are applied to Your next months invoice.
  • To receive a Service Credit, You must submit a claim by opening a support case (support@payrollhero.com).

To be eligible, the credit request must be received by us by the end of the second billing cycle after which the incident occurred and must include:

  • the words “SLA Credit Request” in the subject line;
  • the dates and times of each unavailability incident in respect of which You are claiming;
  • the affected PayrollHero account;
  • and your request logs that document the errors and corroborate Your claimed outage (any confidential or sensitive information in these logs should be removed or replaced with asterisks).

Our most up to date Terms of Service.

If you have any other questions about our confidentiality, data security, or encryption, please feel free to contact us at support@payrollhero.com.

Cloud Computing Part II: 5 Companies that are Changing the way Business is Done

pablo

As a sequel to our previous post on cloud computing, we thought we would give you an idea of how cloud computing is being used by companies to help businesses in South East Asia. Below we have 5 companies that are changing the way businesses function. Some of them are catered towards bringing in more consumers through the door while others are helping business move day-to-day operations into the cloud so that businesses can spend more time and money on their core competencies.

Loyalty Apps

Perx: This Customer Relationship Management (CRM) software collects loyalty cards into one neat app. For a consumer, you earn points every time you purchase something. Accumulation of points leads to rewards. Perx says that consumers spend 7 times more with the app than without it. Some of the merchants under Perx’s belt are Subway, Joe and Dough’s, Maki San and Salad Stop.

For you, a merchant, Perx gives a huge client database by putting you on their map. The company uses Amazon Web Services to control all the data it collects. Perx’s data analytics gives information about consumption trends, how much a consumer would spend on lunch, where they are located: in short, everything you would like to know about your customer. Perx offers this wealth of data to all its merchants for a fee. As an added marketing platform, Perx features companies on their email and blog which is sure to boost your presence in the community.

Foursquare: While Foursquare does not collect virtual loyalty cards, it uses its core competency – geolocation data and services – in order to bring businesses to consumers. For businesses that claim their names in the Foursquare directory, all rewards and deals that are offered will be displayed to the user.

Inventory Management

TradeGecko: Singapore’s leading user-friendly inventory management software uses the Cloud. It helps retailers and wholesalers to manage multiple warehouses and the entire supply chain without using conventional methods like excel. TradeGecko allows remote monitoring which helps retail managers to control operations at multiple locations. TradeGecko also has Xero integrated into it to digitize the accounting end of the business as well.

Unleashed: Similar to TradeGecko, Unleashed provides analytics on turnover rates, overstocked items, managing margins across different channels (retail, wholesale, e-commerce) and all this in real time.  Unleashed also integrates other Cloud solutions to its app.

Food Delivery Apps

Slurp: Created by Silent Mode, Slurp is the Malaysian version of Foodpanda. It uses cloud based POS systems that help restaurant owners process delivery orders. While Slurp does not deliver food, it has a data analytics service along with a customer app and a waiter app, all in the effort to make ordering food a smoother and error-free process.

Benefits of SaaS | Payroll Software

PayrollHero is hiringIn the past, businesses would buy, build and maintain their own software and infrastructures despite the massive costs that went along with that. Software as a Service (SaaS) now gives companies a choice when upgrading their technical requirements. Now they can subscribe to services that are built on shared infrastructure through the internet. SaaS businesses have been expanding in a big way as more and more companies take advantage of the many benefits.

Instead of buying servers, companies use platforms like Amazon’s AWS.
Instead of buying a sales crm, companies use tools like PipelineDeals.
Instead of building a email tool, businesses use tools like MailChimp.

The list goes on and on.

Here are some benefits of moving your payroll needs to a software as a service platform like PayrollHero:

– High Adoption –
SaaS products are available from any computer connected to the internet. For PayrollHero, your team is not stuck managing payroll from a specific computer that has the software installed, instead they can access it from anywhere in the world.

– Lower Initial Costs –
PayrollHero’s SaaS model lets you scale up and down as needed. Our billing is based on the number of active employees within your business, plus, it is billed per day the employee is active.

– Painless Upgrades –
SaaS enables you to constantly get the newest features, bug fixes and enhancements quickly and easily. With PayrollHero, you can see what is happening by checking out our release notes.

– Seemless Integration – 
Many SaaS companies provide API’s so that you can tie one product into another. PayrollHero is no different, with an extensive API, you can make PayrollHero work with many other tools within your business. Some of our clients have integrated PayrollHero with Quickbooks, Workday, Zapier and much more.

Interested in learning more? Reach out and we would be pleased to chat further about how PayrollHero’s Singapore payroll software, Philippine payroll software works as well as how our international time and attendance tools can help you take control of your business.

Startup DNA and How To Keep It

Amazon’s Pieter Kemps (Pieter Kemps – Principal, Business Development & Venture Capital, APAC, Amazon Web Services) spoke at the Echelon Conference the other day in Singapore on the topic of “Startup DNA and How To Keep it When You Build Your Company”. Screen Shot 2014-06-11 at 3.30.43 PMHe focused his presentation around 3 companies; AirBnB, PayrollHero and Amazon.

Pieter spoke about how we use our culture as an asset when growing our team as well as how our Adventure Engineering concept came to be and why it has worked for us.  At the bottom of this post is a video about our #AdventureEngineering concept that explains more about why we do what we do.

One of the points Pieter made was how we are always hiring. Mike Stephenson has a slide deck on his phone that he uses to pitch prospective employees. It talks about what we are doing, our culture, adventure, living in the stretch as well as our need for A players.

Are you looking for a new challenge? Check out our video below and get in touch as we have opening in Southeast Asia and our Whistler, Canada office.

BUY Crocodile in the Yangtze – The Alibaba Story

seat-giveawayWe had the honour of presenting the Asia Premier of the film Crocodile in the Yangtze – The Alibaba Story in the Philippines just over a year ago. We flew in the director, Porter Erisman so that we could watch the film as well as do a question and answer with Porter after.

It was an amazing video and a fantastic night. We had tech entrepreneurs from all over Southeast Asia fly in to join the event and take in one of the most entertaining movies on entrepreneurship. Of course a big thanks to EO Philippines and Amazon for stepping up and sponsoring the event so that it could all be possible.

Did you miss the event? Want to own the movie? We now you can. Crocodile in the Yangtze – The Alibaba Story is now available for pre-order on Vimeo on Demand.

Here is the trailer:

Recap: Crocodile in the Yangtze Asia Premier

Screen shot 2013-04-11 at 10.49.02 PMLast night we hosted the Asia premier of the film Crocodile in the Yangtze in Manila, Philippines.  We flew the director, Porter Erisman in for the event to speak to the group and do a question and answer session after the screening.  It was a fantastic night!

The Crocodile in the Yangtze is a fantastic film that looks at the rise of China’s first Internet entrepreneur and former English teacher, Jack Ma, as he battles US giant eBay on the way to building China’s first global Internet company, Alibaba Group.

A big thanks to Amazon Web Services and EO Philippines for sponsoring the event along with us to make it happen.

*More photos here

Screen shot 2013-04-11 at 10.24.42 PMPorter Erisman (left) taking questions after the screening

Screen shot 2013-04-11 at 10.23.49 PMPorter Erisman and Mig33 CEO Steven Goh

2 Days of Training (Zendesk and PayrollHero)

Screen shot 2013-04-07 at 5.48.53 AMOur office in the Philippines is used by quite a few companies for events.  We have, what we call, a “think tank” that works great for events. We have been the location for Google, Amazon and most recently been asked to host an event for Zendesk.

Zendesk is running a day long session on April 17th 2013 in our think tank and since Zendesk and PayrollHero share a few customers we thought it would make sense to run a bootcamp of our own the day before to make it easy for companies that wanted to attend both.

Join us!

PayrollHero – April 16th 2013 (Register Here)
Zendesk – April 17th 2013 (Register Here)

Screen shot 2013-04-07 at 5.48.43 AM

Screen shot 2013-04-07 at 5.59.08 AM Screen shot 2013-04-07 at 5.59.21 AM

Crocodile in the Yangtze: Asia Premier Screening (& Contest)

seat-giveawayExciting news!  PayrollHero has arranged for the Asia Premier of the film “Crocodile in the Yangtze” to be showcased in the Philippines.  We have put together an exclusive event and we are flying in the director, Porter Erisman, to join us!

A big thanks to EO Philippines and Amazon AWS for sponsoring the event along with us to make it happen.  While the event is invite only, we are giving away 2 tickets – all you need to do is head over to the PayrollHero Facebook page and comment on why you should be chosen to attend.  We will pick two lucky people to join us.

About Crocodile in the Yangtze:

Crocodile in the Yangtze follows China’s first Internet entrepreneur and former English teacher, Jack Ma, as he battles US giant eBay on the way to building China’s first global Internet company, Alibaba Group. An independent memoir written, directed and produced by an American who worked in Ma’s company for eight years, Crocodile in the Yangtze captures the emotional ups and downs of life in a Chinese Internet startup at a time when the Internet brought China face-to-face with the West.

Crocodile in the Yangtze draws on 200 hours of archival footage filmed by over 35 sources between 1995 and 2009. The film presents a strikingly candid portrait of Ma and his company, told from the point of view of an American fly on a Chinese wall who witnessed the successes and the mistakes Alibaba encountered as it grew from a small apartment into a global company employing 16,000 staff.

AWS re:Invent

Drive from Whistler to Bellingham ~200km

Last week we went to AWS re:Invent Conference, we thought that once we get there the fun stuff will begin, but even the trip down there itself was an adventure.

We left Whistler early in the morning, to make it down to Bellingham for our 11am flight. Arrived at the airport at around 9am, stood in the line indefinitely until around 11am, we were told that the plane is late (duh), and that it will not be here for another 4h or so, great …

We packed our bags back into the cars and went to grab lunch and waste some time.

We were checking the airline website the whole time to see what the new estimated time was. Anyways, we did finally get to fly out, it was around 4pm by the time we left and around 7pm by the time we got to Vegas, we imagined our day a bit diffrently 😉

Anyways, that was Monday.

On Tuesday, I went to my Workshop session. It was a whole day security session, presented jointly by RightScale and Trend Micro. RightScale showcased their product to get everyone up to speed on how to use it and Trend Micro showcased two of their products, Deep Security and SecureCloud. Overall I didn’t get that much value from the first half, since Ubertor has been with RightScale for years and I’m pretty famillar with it. The second half was a bit more useful for me since I’ve never seen any of Trend’s products, altho I’m not sure if/when we’ll make use of them. Still it was good to understand options. A nice bonus from this session was that it came with a $200 AWS credit code, so it technically made the session cost only $300 not $500.

Wednesday was the first day of the conference. During the keynote AWS announced further reductions in S3 pricing and the introduction of their new RedShift product, which is a large scale data warehousing solution, seemingly backed by Postgesql technology. They also summarized that they have released ~100 new features last year, and they expect to double that in 2013.


(from the keynote #1 video on YouTube)

They mentioned a crazy statistic: AWS adds more servers DAILY, than Amazon owned entirely in 2003.

At the end of the day was the big re:Play party. AWS kept us well inebriated and fed throughout the event so kudos for that.


Sorry about the blurry pic 😉

Thursday was the second day of the conf. During the second keynote, the Data Pipeline service which allows easily grabbing data from a bunch of sources, churning it through a massive array of map reduce instances and dumping the result somewhere else. All this can be configured through a gui workflow builder and overall seems pretty neat. I’m not sure what we specifically can do with it, but I can definitely see applications for it if you do any log processing or whatnot daily.

Over the two days of the conf, I mostly went to security and architecture talks. My main takeaway was a bucket list of little security tweaks here and there that should make our system even more secure than it already is. As for the architecture talks; Netflix has a bit of an insane setup. They have 100’s of little applications, all managed by different teams, all at different uptime standards. Its pretty amazing what systems they put in place to basically allow any of these pieces to fail and their system to continue working.

Netflix setup looks something like this: (grabbed from their slideshare deck)

I’m looking forward to next years’s re:Invent. The cloud landscape keeps maturing every year, I remember just a few years ago the whole idea of “Cloud” didn’t even exist ….