Security & Compliance
Last updated: July 14, 2026
1. Cloud Infrastructure
Squad HR is built entirely on Amazon Web Services (AWS) using modern serverless databases and Cognito Identity pools. All servers are monitored 24/7/365 to guarantee maximum reliability and isolate tenant resources securely.
2. Data Encryption
We safeguard your workforce data at every point of its lifecycle:
- In Transit: All HTTP connections are strictly forced over HTTPS using TLS 1.3 encryption protocols.
- At Rest: Databases, S3 document storage (including employee contracts and profile files), and backup disks use AES-256 military-grade encryption keys.
3. Authentication & Access Control
We use secure Cognito User Pools. Passwords are encrypted before verification, and we support Multi-Factor Authentication (MFA) to prevent unauthorized credential use. Role-Based Access Controls (RBAC) ensure that managers and employees only see data they are explicitly authorized to access.
4. Backups & Disaster Recovery
We run automated continuous backups with point-in-time recovery enabled. This ensures that in the event of an infrastructure failure, your team directory, leave balances, and shift logs can be recovered in minutes with minimal data loss.
5. Report a Vulnerability
If you believe you have discovered a security vulnerability in Squad HR, please report it responsibly by emailing support@squad-hr.com. We investigate all genuine reports promptly.