PaySpace offers a flexible user security model that functions on a “what you can see” and a “who you can see” basis.

Depending on the type of users you have in your company, various security roles can be defined where permissions are allocated that restrict users to selected screens or provide read-only access. Users can be restricted based on “org units” defined by the organisational structure and if more than a legal entity or pay frequency exists, additional restrictions can be applied.

icons8-check-all-50

Unlimited users

icons8-check-all-50

Unlimited security roles defining allow/deny/read-only access per screen and field – users are then linked to a security role

icons8-check-all-50

Holistic Cloud Security Benefits

Read More >

icons8-check-all-50

Single Sign-On (SSO)

Single Sign-On is a feature which lets you access PaySpace as well as third-party applications with a single submission of user credentials.

icons8-check-all-50

ISO27001 certified

icons8-check-all-50

Multi-facto authentication available as a second layer of security

icons8-check-all-50

Company, frequency, org unit and region-based security to control who the user can see

Security Is Our Priority

PaySpace track all changes made to any data or form within the system, meaning customers can view who made these edits and the dates on which the edits were made. Audit trails and reports are also available to check and verify specific changes made over a pre-selected period of time. 128 bit SSL encryption is present on every form within PaySpace – which means client information is encrypted during transmission from our servers to their browser. Further to this, PaySpace has various world-class security measures in place to ensure the protection of your data: read more here.

What is SSO?

Before understanding what Single Sign-On is we must go through how traditional authentication works.

  1. A service will present the user with a login page where the user must submit a set of login credentials i.e., username and passwords. Some services might ask for more authentication information such as a one-time password.
  2. The credentials submitted by the user are validated against the ones present in the database at the service.

Traditional authentication is quite intuitive; everything is managed within the service, providing a simple way for users to authenticate. However, if a user needs to access multiple applications with a different set of login credentials for each application, it quickly turns cumbersome for the user. The user must remember multiple credentials and comply with different password policies.

Single Sign-On is a feature which lets you access PaySpace as well as third-party applications with a single submission of user credentials. Users aren’t required to remember an array of usernames and passwords for each application they need access to. PaySpace uses OpenID and OAUTH to achieve SSO with third-party identity providers.

Contact our support center so that we can assist you to setup SSO.