Security

Keeping our clients' data secure is an absolute top priority at OmniStar. Our goal is to provide a secure environment, while also being mindful of application performance and the overall user experience. To discuss a vulnerability or other security concern, please contact us.

Compliance

End-to-end security

OmniStar is hosted entirely on Amazon Web Services (AWS), providing end-to-end security and privacy features built in. Our team takes additional proactive measures to ensure a secure infrastructure environment. For additional, more specific details regarding AWS security, please refer to https://aws.amazon.com/security/.

IRAP compliance

Security and trust are integral at OmniStar. We have achieved PROTECTED classification level in Infosec Registered Assessors Program (IRAP) Assessment. Our continued IRAP Assessment ensures our organisational and technology controls are independently audited at least annually. Please contact us for OmniStar's latest report.

ISO certifications

ISO 27001:2013 is considered to be the highest international standard of information security as it relates to customer data. Following an extensive audit process the ISO 27001:2013, ISO 27017:2015, and ISO 27018:2019 certifications confirm that OmniStar meets the highest international standards for security, reliability, quality, and trust. These certifications also prove OmniStar commitment to continuously improving its information security posture. Please contact us for OmniStar's ISO certificates.

Data center security

OmniStar customer data is hosted by Amazon Web Services (AWS), which is certified SOC 2 Type 2. AWS maintains an impressive list of reports, certifications, and third party assessments to ensure complete and ongoing state-of-the-art data center security.

AWS infrastructure is housed in Amazon-controlled data centers throughout the world, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access. More information on AWS data centers and their security controls can be found here.

Application security

All OmniStar web application communications are encrypted over TLS 1.2, which cannot be viewed by a third party and is the same level of encryption used by banks and financial institutions. All data for OmniStar is encrypted at rest using AES-256 encryption.

OmniStar actively monitors ongoing security, performance and availability 24/7/365. We run automated security testing on an ongoing basis. We also contract a third party for penetration testing.

Regarding privacy, we are members of the Privacy Shield framework and you can view our full privacy policy here: https://www.omnistar.cloud/privacy.

Encryption at Rest

Two-factor Authentication

Single Sign-on

Questions about security or compliance?

Keeping our clients' data secure is an absolute top priority at OmniStar. Our goal is to provide a secure environment, while also being mindful of application performance and the overall user experience. To email us with a vulnerability or other security concern, please contact us.