It has always been our practice to put in conscientious effort to ensure that our service environment has processes and respective controls in place. We recognize that our daily work handles client's sensitive information, and client have their obligation to meet their own requirements, thus it is important and necessary for us to upkeep a certain level of compliance & confidentiality. To ensure this, PayrollServe goes through the SAS No. 70 Audit (under Section 404 of the Sarbanes-Oxley Act) annually.

Non-Disclosure Promise

• Sharing of clients' information is strictly prohibited
• PayrollServe's employees are ALL required to sign a non-disclosure agreement

Data Security Measures

• Full back up (Daily, Weekly & Monthly)
• Application, database and file servers located in our in-house data center
• All clients data are centrally stored in encrypted SQL database
• Server room is physically enclosed & secured with limited card access for authorised personnel only
• All computing devices are installed with anti-virus and personal firewalls
• The rights to access to a particular payroll information will only be granted upon approval from formal authorize parties

Business Continuity Plan (BCP)

• Annual recovery exercise is carried out to ensure that the recovery of the server is within the 48 hours timeframe in the event of server crash
• Additional servers in place to ensure the continuity of the system, in the event of downtime