Security
Your security and privacy is our priority.
Security Notes at Remittance Go
On this page, we endeavour to provide simple notes relating to the security of our platform and it’s relationship with the invoicing software we integrate with.
This page is our attempt at total transparency with our users, as well as a historical archive of our technical notes relating to security.
We implement multiple layers of security to protect your information appropriately.
Security Statement at Remittance Go
Please read about our current security measures below
Website security
- Remittancego.com is hosted and registered in Australia, tied to our ABN
- Our subdomains, where our application takes place – app.remittancego.com is also hosted in Australia.
- Both are protected by SSL encryption
Data Protection
- We do not store your remittance PDFS on our servers at any point
- History ledger of remittance matching is stored
- Appropriate use of client-side
Authentication
- Xero is using SAML or SSO (via oAuth2) currently.
- Follow official arecommendations from Xero developer portal
- Direct API access through your existing Xero user ID and organisation tokens
- No third party handling or storage of accounts
Organisation security
- 100% inhouse development
- Only authorised Remittance Go personnel are allowed to access our database and are required to authenticate themselves
- Mandatory 2FA
- Secure systems engineering methodologies
- Password encryption storage and systems
Secure development
- We perform daily backups of all application data in multiple locations
- We ensure every instance is fully encrypted and secured
- Change control procedures
- Technical reviews
Monitoring
- Uptime monitoring
- Incident response
- Support available during business hours
- Disaster recovery simulation every 12 months