Paycor Sets the Standard for Data Security
Paycor sets the standard for state-of-the-art data security. We apply machine learning to enhance our risk management capabilities by intelligently flagging suspicious activity at scale. Paycor stays one step ahead of fraud with robust and adaptive fraud prevention solutions.
Paycor’s Unified Platform Advantage
Paycor’s products exist on a unified platform purpose-built for reliability, scalability, and extensibility. Our software is highly configurable, featuring:
- Multi-tenant architecture, Cloud-native features, Microservices, and Open APIs
- Advanced Data Storage including SQL, NoSQL, and Cloud Storage
- Hybrid Cloud Infrastructure that connects with AWS, Azure, and Google Cloud
- End-to-end Encryption and Security Certifications
- 99.9% Uptime
- Partner integrations through our OneTrust process
Industry-Leading Security
Accredited and SOC Compliant
While Paycor uses advanced data security protocols, we recognize security goes beyond a checklist of features. Paycor is accredited by and compliant with GDPR, FinCEN, US Privacy Shield, SOC 1 Type 2, and SOC 2 Type 2 security standards.
Intrusion Detection
Paycor servers and networks are stored in enterprise-class data centers that can detect patterns and signatures of malicious activity. All infrastructure is fully redundant with continuous live backups ensuring data consistency and reliability.
Prevention Threat Detection
Paycor’s Advanced Threat Detection feature combats zero-day viruses still unknown to the cybersecurity community. It uses behavioral analytics like file access patterns to proactively isolate the infected endpoints before a data breach occurs.
Employee Training
Paycor’s commitment to security starts with employees who are well-trained in how to prevent, protect, and respond to safety and security issues. We regularly train our teams on cyber and physical security, data and asset protection, and how to respond to an active threat.
Single Sign-on
Paycor can easily support your SSO provider. Microsoft SSO clients are automatically signed in on their corporate devices connected to your network. For Google, OneLogin, and Okta clients, along with clients of other providers, Paycor identifies the user’s origin by application, subdomain, or IP address and redirects the user back to the identity provider asking for authentication.
Industry-Leading Data Encryption
Paycor encrypts every endpoint where customer data is stored. This includes disk-level encryption to prevent files from being transferred from a company laptop or server if the device is stolen. Paycor also encrypts data at the file level to prevent online database breaches.
Multi-Factor Authentication
This safeguard helps prevent your employees from recycling the same password on multiple platforms. To access the database, users are required to enter their username and password and complete a variety of authentication requirements, like email, text message, phone call, or biometric identification.
Two-Factor Authentication
Systems like Google Authenticator and Microsoft Authenticator provide users with a randomized six-digit code that must be retrieved and entered to access information. Increased authentication eliminates the risk of an email or phone number that has been compromised by phishing or hacking.
Dedicated Risk Assessment Team
Cybersecurity threats are constantly evolving and becoming more complex. Paycor’s dedicated team continually tests and implements new security protocols to prevent secure data from falling into the wrong hands.
Company Controlled Laptops
Paycor’s employees use company-controlled laptops, creating an additional layer of security for sensitive data. These secure, encrypted machines are key to the work of our dedicated risk assessment team.
Vulnerability Scanning
Paycor’s dedicated security team performs vulnerability scans and penetration tests across our entire network. We also rotate third-party software companies to perform software scans on our network twice a year.
Nacha Certification
As a Nacha Certified company, Paycor adheres to all Nacha rules and conducts an annual Nacha Audit. We also go beyond the typical process of sharing our audit results with Nacha by providing them with full transparency. Nacha evaluates our policies and procedures, risk, financials, and overall compliance structure. We work with Nacha on an annual basis to ensure we are holding to the highest standards of compliance so we can maintain our designation.
FinCEN Registration
Paycor is registered as a Money Servicing Business with FinCEN. As such, we agree to combine efforts with other financial institutions in investigating and reporting on financial crimes including money laundering, fraud, and terrorism financing through a compliant Anti-Money Laundering (AML) program.
Data Privacy Framework
Paycor is certified with the U.S. Department of Commerce under the Data Privacy Framework covering all jurisdictions that certify in the European Union and Switzerland. The certification provides data protection requirements when transferring personal data between the European Union, Switzerland, and the United States.
Secure Integrations
Paycor’s integrations ensure the secure transfer of data between HR apps. Our developer tools give customers the ability to build complex custom integrations. We also offer developer services, giving your business access to a team of experts who can build integrations for you.
Why Data Security Matters
As an HR manager, your employees trust you to keep their information safe. But do you have the same level of faith in your HCM provider? HR databases are the ideal target for hackers. They contain the critical information hackers prey on such as Social Security numbers, bank account numbers, check stubs, and family information.
Paycor’s security protocols pinpoint suspicious activity to prevent fraudulent account takeovers. With a flexible approach to data security, we quickly adapt to new threats by allowing the risk team to confidently change existing strategies with A/B and back-testing capabilities.
Learn More about Paycor’s Security Protocols
At Paycor, data security is a top priority. We don’t just adhere to industry standards, we exceed them with additional certifications, proactive threat detection, and a dedicated team of risk prevention experts. Use these resources to learn more about our comprehensive approach.
Software for IT Teams
Our products are purpose-built for IT teams, with features designed to streamline work and protect company data.
Compliance Solutions
Paycor empowers companies to stay compliant with ever-changing regulations and best practices for data security.