Full Protection for Your HR Data

Being a Salesforce native HR solution means flair operates within the Salesforce eco-system. Users can efficiently manage their HR and recruitment tasks utilizing the highly customizable features, robust data management capabilities, and broad integration options offered by the world-leading CRM platform.

flair is available on the Salesforce AppExchange. The AppExchange is an app store for Salesforce users, where they can find and install solutions that extend their Salesforce experience.

To be on the AppExchange, flair is built to meet Salesforce's high standards for quality, security, and performance. This means users can trust flair to deliver a reliable and scalable HR solution that aligns with Salesforce's best practices and guidelines.

As flair is built on the Salesforce platform, it inherits the same high level of security protection provided by the world’s leading CRM. flair HR users’ data is stored and processed within the Salesforce environment. This helps you comply with data residency and data sovereignty rules.

Some of the top security benefits of a Salesforce-native platform like flair include Salesforce Shield Platform Encryption both at rest and in transit, multi-factor authentication, data loss prevention measures, and security audits to ensure compliance with various industry standards and regulations such as ISO 27001, SOC 2 Type II, and GDPR.

Data sovereignty refers to the concept that data is subject to the laws and regulations of the country in which it is collected, processed, and stored. For example, many countries have strict regulations regarding the handling of personal data, especially sensitive information such as employee records. Adhering to data sovereignty ensures compliance with these regulations, avoiding legal consequences and penalties.

Salesforce recognizes the significance of data sovereignty for global businesses and offers solutions to help them comply with various regulations. For instance, Salesforce introduced the Hyperforce EU Operating Zone in early 2023 specifically for companies handling customer data within the EU. This service establishes three availability zones located in EU data centers and provides EU-based customer support and technical assistance. Additionally, outside of Europe, Salesforce operates data centers in the USA, UK, and Japan, along with availability zones in the Asia Pacific region, the Americas, and the Middle East. Thanks to Salesforce's data sovereignty provisions, flair users can enjoy compliance with local laws as well as global regulations.

A Salesforce security health check is a comprehensive assessment conducted within the Salesforce platform to evaluate an organization's security setup. A summary score indicates how your organization compares to a security baseline, such as the Salesforce Baseline Standard. You can upload other custom baseline standards if you wish.

The process involves reviewing various aspects of security configurations, settings, and user access controls to identify potential vulnerabilities, misconfigurations, or areas for code improvement. For example, assessing authentication methods and single sign on configurations can ensure that user credentials are adequately protected and that access to Salesforce is properly authenticated.

Visualforce pages often handle sensitive data and interact with various Salesforce functionalities. So, reviewing Visualforce code can help identify potential security weaknesses for threats like injection attacks. For more information on Salesforce security health checks check out this Salesforce support page.

Salesforce Shield Encryption employs advanced encryption techniques to safeguard sensitive HR data stored within the platform. This includes encrypting data "at rest" – when it's stored in databases – as well as "in transit" – when it's being transferred between users or systems.

This type of encryption allows organizations and HR departments to protect sensitive information such as employee personal details, salary records, and performance evaluations. Encryption assists organizations in complying with data regulations such as the US Health Insurance Portability and Accountability Act (HIPAA) and the European Union General Data Protection Regulation (GDPR), which recommends such information security. Salesforce Shield Encryption also offers auditing and monitoring capabilities, enabling administrators to track access to encrypted HR data and monitor changes to encryption settings

The Bring Your Own Key (BYOK) feature of Shield Platform Encryption provides an additional safeguard in the event of unauthorized access to essential data, enhancing protection levels. For more information on Salesforce Shield Encryption, check out the Salesforce website.