Get started for free Request demo Login
decor
  • linkedin logo
decor
section hero alt
Home / Data Security

Data security

At Sсhrift, we treat your data as if it were our own - with the utmost responsibility. The best confirmation of this is international recognition - ISO/IEC 27001:2022 certification from leading certification body in Germany (link).

Our platform ensures secure document management, reliable storage and secure communications with partners. At the same time, you get a modern interface and user-friendly functionality regardless of the place of work or device.

ISO 27001 certification is not just a document. It is an opportunity to securely exchange documents with Ukrainian and European partners, an advantage when participating in international tenders, and a confirmation of reliability for cooperation with large international companies.

Protection technologies

  • Secure document management

    The patented Schrift Encryption technology ensures complete data confidentiality in a multi-user environment. End-to-end data encryption (E2EE) works on top of the system's business logic to control access to data and prevents access even from the Schrift service provider, data center administrators, and any unauthorized parties, including law enforcement agencies.

  • Device identification

    Identification The device that is usually used to log in is identified by the system. If a new device is used, a notification is sent to the user's email with detailed connection information. This makes it impossible to replace an authorized device using stolen data from that device.

  • User account protection

    We immediately notify the user via email about all important actions with their account: a password reset request, an attempt to change the email (login), account deletion, etc.

  • Password protection

    If you enter an incorrect password more than 5 times, your account is blocked for 5 minutes and you receive a notification about it to your email. Moreover, the system does not disclose information about whether the entered email address has a registered account.

  • Two-factor authentication (2FA)

    2FA ensures that only the user's account can be accessed by the owner. The company can include a requirement for employees to use 2FA.

  • Secure document management

    The patented Schrift Encryption technology ensures complete data confidentiality in a multi-user environment. End-to-end data encryption (E2EE) works on top of the system's business logic to control access to data and prevents access even from the Schrift service provider, data center administrators, and any unauthorized parties, including law enforcement agencies.

  • Device identification

    Identification The device that is usually used to log in is identified by the system. If a new device is used, a notification is sent to the user's email with detailed connection information. This makes it impossible to replace an authorized device using stolen data from that device.

  • User account protection

    We immediately notify the user via email about all important actions with their account: a password reset request, an attempt to change the email (login), account deletion, etc.

  • Password protection

    If you enter an incorrect password more than 5 times, your account is blocked for 5 minutes and you receive a notification about it to your email. Moreover, the system does not disclose information about whether the entered email address has a registered account.

  • Two-factor authentication (2FA)

    2FA ensures that only the user's account can be accessed by the owner. The company can include a requirement for employees to use 2FA.

DATA STORAGE AND TRANSFER SECURITY

  • checkmark

    Data encryption

    All data, including account information, files, and other information, is transmitted via SSL/HTTPS with 256-bit encryption

  • checkmark

    Reliable servers

    All data is stored in an encrypted form on reliable servers located in Germany

  • checkmark

    Secure backup

    To minimize the risk of data loss, data is continuously copied to multiple servers

  • checkmark

    Strong passwords

    Following the best practices of storing user passwords, the font never stores passwords in their original form, but only in a transformed, secure form using one-way hashing with “salt”

decor

ADMINISTERING ACCESS TO DATA WITHIN THE COMPANY

  • Role system

    Access rights management is implemented using a role system that provides flexible configuration and reliable protection of access rights

  • Flexible access settings

    Choosing one of the three levels of access in an employee's assignment allows to protect sensitive documents. Among other uses, it's helpful when delegating access of assistant or acting employees to a position

  • Access rights and protection against tampering

    Access to company data is granted to an employee during appointment to a position. The user is granted employee status once an email invitation is accepted. The user and his employee status are then interlinked and cannot be edited. It ensures that only the said user can act on behalf of the employee

  • Control of information flow

    Employees' access to information within the company is based on the principle: "everything created by me or provided to me is accessible to me". Unauthorised information transfer does not occur within our system

  • Quick access blocking

    If there is a risk of unauthorised access to data, a user with the appropriate rights can block access for an employee, department or the entire company

  • Event-based model of the system

    Each employee action in the system creates an event that ensures responsibility and eliminates misunderstanding in communication

decor gdpr

COMPLIANCE WITH GDPR

We are in compliance with the General Data Protection Regulation (GDPR) and have implemented a wide range of technical and organisational measures. Contact us if you have any questions.

Automated electronic document management systems are implemented in companies to reduce the time spent by employees on manual processing of documents. In addition, such a system significantly reduces the risk of losing confidential information. Also, such a document flow at the enterprise allows the manager to control in real time, monitoring each stage of the tasks performed.

Main functions of the electronic document management system Schrift

The implementation of an electronic document management program allows you to implement the following tasks

  • accounting of internal, incoming and outgoing documents used in the company;
  • simplification of the company’s document management process by storing data in a single database;
  • registration and storage of documents and their different versions;
  • eliminating the possibility of creating duplicate documents;
  • integration with other information systems.

Electronic document management at an enterprise allows documents to be processed automatically and transferred to other departments for further execution. A business process of this kind is launched without the participation of an employee when creating a new document. The automated document management system Schrift allows you to monitor the timing of documents and mark them with the degree of importance and urgency.

This improvement in document management makes it easier to find the right document. Automation of document management allows you to distribute the use of documents among company employees. This ensures reliable protection against unauthorized changes. In addition, all document changes can be tracked. All of these improvements are aimed at reducing the time required to process documents and speeding up the exchange of documents between company departments.