Meet our advanced HR management solution – a smart, integrated platform that streamlines the entire process of managing work hours, absences, and shift scheduling. Join our free pilot today and experience how innovation can help you save time and reduce costs.
GDPR
Meckano is GDPR ready
At Meckano, protecting our customers’ personal data is a top priority.
With clients across multiple countries, we strictly adhere to the General Data Protection Regulation (GDPR) standards.
The GDPR expands the privacy rights of individuals in the European Union and requires certain companies that process personal data of EU citizens to comply with comprehensive data protection regulations.
These regulations apply to organizations that handle the personal information of both companies and individuals within the EU.
About GDPR
In 2016, the European Union introduced the General Data Protection Regulation (GDPR) — a comprehensive privacy law designed to protect the personal data of individuals within the EU. The GDPR applies to any company whose systems collect, store, or process information about EU residents, regardless of where the company itself is based.
Its purpose is to strengthen data protection and security, and to establish a clear framework for how organizations may use, share, and process personal information. Under the GDPR, “personal data” is defined broadly — covering virtually any information that can identify a specific individual.
This is how we keep your data secure:
Backup of security data
A comprehensive backup of all accumulated data is performed, including system login logs and user activity logs. Backups are securely encrypted and stored across multiple data centers worldwide. All data is retained for several years.
Unauthorized access protection
At Meckano, we enforce a strict password policy with high security standards (minimum 7 characters, combining letters, numbers, upper/lower case, and a special character). Passwords are valid for a period defined by the client (3 to 6 months). Automatic logout is triggered upon detection of inactivity or when access is attempted from another workstation. Access is protected with two-factor authentication via SMS or email access code.
It is optional to restrict login to authorized IP addresses, and enforce location-based verification by defining a radius on a map.
Login with Microsoft or Google account
Users can conveniently sign in with Microsoft or Google accounts, including corporate credentials. All user management is centralized, enabling administrators to provision, monitor, and restrict access directly from the system users’ command center.
SSL data encryption
SSL (Secure Sockets Layer) is a security protocol that encrypts the connection between a web server and a web browser. Fields containing sensitive information in the database are designated as encrypted using encryption keys, leveraging the SSL protocol to create a secure communication channel that prevents unauthorized access.
Data protection
Meckano implements robust data protection mechanisms to prevent unauthorized access and establish a comprehensive security framework.
These mechanisms include the use of Cloudflare, firewall software, antivirus solutions, and Cluster technology to secure data transmission between the server and the user.
Want to learn more?
Read about information security in Meckano.
Where can I learn more about GDPR?
Additional information is available on the official European Union GDPR website.
I have more questions. Who should I contact?
For further inquiries regarding GDPR, please contact us by phone at +972 73-7969270 or via email at [email protected]
Our DPA: meckano.com/dpa/