Security at RosterElf
We take the security of our platform and our customers' data seriously. Find our security policies and programs below.
Vulnerability Disclosure Program
How to responsibly report security vulnerabilities in RosterElf, including scope, safe harbour, and contact details.
Security knowledge base
Help articles covering multi-factor authentication, Google Authenticator setup, infrastructure security, and more.
Privacy policy
How we collect, use, store, and protect your personal information in compliance with Australian Privacy Principles.
Related pages
Other resources you might find helpful
Legal
Terms, privacy policy, acceptable use, and all legal documents governing your use of RosterElf.
Contact us
Get in touch with the RosterElf team for support, sales, or general enquiries.
Features
Explore the full suite of rostering, time and attendance, and payroll features.
Frequently asked questions
- RosterElf uses industry-standard encryption for data in transit (TLS) and at rest. Our infrastructure is hosted on secure cloud providers with regular security assessments. See our infrastructure and security article for more details.
- Yes. RosterElf supports multi-factor authentication (MFA) including SMS verification and Google Authenticator. We strongly recommend enabling MFA on all accounts. Visit our MFA setup guide to get started.
- You can report security vulnerabilities through our Vulnerability Disclosure Program. Please review the scope and terms before submitting a report to security@rosterelf.com.
- RosterElf does not store credit card data directly. Payments are processed by PCI-DSS compliant payment providers. See our credit card security article for full details.