Security - most frequently asked questions
Below, you'll find the answers to the most frequently asked security-related questions:
ApprovalMax supports 2FA via TOTP standard
ApprovalMax is compliant with Xero and Intuit security standards
ApprovalMax goes through a 3rd party penetration test once a year. We do perform regular internal self-assessment in addition to external penetration testing. Details can be shared once an NDA has been signed.
ApprovalMax has a Data Security Policy. Details can be shared once an NDA has been signed.
ApprovalMax has a 98/100 score on the automated security scanning system. Details can be shared once an NDA has been signed.
ApprovalMax does not have SOC Type2, ISO27001 and alike certifications at this point.
ApprovalMax has a standard incident response plan, it is covered in “ApprovalMax Data Security Management Policy”. Details can be shared once an NDA has been signed.
Here is ApprovalMax password policy. We do perform strong checks and automated check agains the list of compromised passwords. In case of multiple (6) failed login attempts, users are locked out for 30 minutes.