At Paylocity, we are committed to maintaining the highest level of security to safeguard client data. Using a combination of technology, compliance practices, and policies – we are able to foster a culture of security to monitor and protect your data 24 hours a day, 7 days a week.
Our top priority is protecting & securing your data.
Technology & Infrastructure
Infrastructure is hosted with primary and secondary data centers located & operated in the United States
Customer data is encrypted leveraging standard 256-bit AES encryption HTTPS (TLS), TLS over SMTP or via SFTP
Data is preserved with real-time, secure backups to an offsite U.S. location & is available for retention if necessary
Paylocity has completed all necessary requirements and activities for compliance with HIPAA as it relates to safeguarding the privacy of personal health information.
Paylocity has certification for compliance with ISO 27001:2013. Our compliance with this internationally-recognized standard is evidence of our commitment to information security at every level of our organization, and that Paylocity’s security program is in accordance with industry leading best practices.
Paylocity participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. Paylocity is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles.
Paylocity employs 24/7 threat monitoring solutions to detect any intrusion attempts. Additionally, we perform rigorous annual vulnerability testing and frequent penetration testing on our systems and applications to identify and correct potential risks.
COMPLIANCE & AUDITS
Paylocity ensures full compliance with all state breach notification laws. We undergo annual SSAE 18 SOC 1 Type II and SOC 2 Type II audits by an independent third party audit firm. To request our SSAE 18 Report, please contact your Paylocity Sales Professional.
To learn about Paylocity and the European General Data Protection Regulation (GDPR), click here.
Personnel & Facilities
All Paylocity employees undergo comprehensive background checks
Paylocity headquarters is protected by a 24/7 security monitoring system with controlled access
All Paylocity employees are required to complete annual security training