All you need to know about the PCT
For a secure login the PCT uses two factor authentication (2FA). Each user must activate this manually the first time they log in.
Click on “Activate 2FA”, download an Authenticator App and add your account by scanning the QR code or entering the unique ID. Finally, enter the 6-digit code generated in the authenticator app to confirm that your account has been properly added in the app.
On the ‘Users‘ page in the left navigation, as an administrator you can see which users are using 2FA.
When a user does not has access to his 2Fa code, because he has a new phone, a full user can temporarily deactivate the 2FA setting so that the user can activate it again. When logging in, it automatically forces 2FA to be set. Without activation of 2FA, it is not possible to log in.
Yes. Every day 2 “hot storage” backups of the data are made. This happens every 12 hours. These backups are stored encrypted in Europe. In addition, an encrypted “cold storage” backup is made every day and stored within the data center in the Netherlands.
Data can be exported from the tool via an Excel and/or PDF export.
Currently, backups are tested for corruption on a random (periodic) basis. A fully automated backup corruption testing process is underway.
We strive for an uptime of 99.5% during weekdays (NL) from 09:00 to 17:00.
The PCT is a framework that runs within the software of ISO2HANDLE. ISO2HANDLE is the developer of the software. The PCT framework was developed by Protify.
Each customer environment has its own firewall.
All client environments and backups are monitored 24/7 by the ISO2HANDLE, the software vendor. In turn, their monitoring systems are also monitored so that any problems are immediately detected.
Of each client environment the following is monitored:
– uptime (live)
– presence of hot storage backups
– presence of cold storage back-ups
ISO2HANDLE regularly performs a PEN test on the software. Of course it is also possible to perform a PEN test on your own environment.
In addition to the created users, consultants may be able to log into the PCT. In the section “users” you can see which consultants these are. In addition, ISO2HANDLE has the ability to restore a backup and in this way they have access to the data in the PCT.
The client is ultimately responsible for the data placed in the PCT. The consultant is the processor of this data and ISO2HANDLE is the sub-processor. The moment a client environment is activated, a processor agreement is drawn up.
Each customer has its own customer environment with unique URL and its own database. All databases of customer environments are separated from each other and never touch.