As a payroll solution, Access Definitiv is entrusted with storing sensitive personal information on behalf of your workforce. At The Access Group, we recognise the critical importance of safeguarding this data and are committed to ensuring robust security measures are in place.
We also offer a range of features and best practices to help you enhance the protection of your organisation’s information, empowering you to maintain the highest standards of data security.
Implement 2FA
In compliance with ATO regulations, Definitiv automatically enforces Two-Factor Authentication (2FA) for user roles that have access to specific sensitive data, such as superannuation and tax information.
However, 2FA is an option available for other user roles too. To make use of this feature and to enable 2FA for other user roles, follow these steps:
Navigate to User Roles.
Click View for the user role you want to update.
Turn the Requires 2FA toggle on.
Click Save.
2FA will now be turned on for any user with this user role assigned.
Important Note: 2FA is only available on a web browser. An employee can log in and utilise the mobile app without 2FA.
Implement SSO
We recommend enabling Single Sign-On (SSO) for your Definitiv environment. By integrating SSO, you can align access control with your organisation’s existing IT security policies.
This approach allows you to centrally manage access and is available on both the web browser and mobile app.
View Only Permission for Bank Accounts
To protect your employees’ bank account information from unauthorised changes, the following permission structure can be set up for your employee-based users:
View Employee Banking permission turned on at the Self level.
Edit Employee Banking permission turned off.
By limiting access in this way, you can reduce the risk of unauthorised users making changes to an employee’s bank account, adding an extra layer of security.
Password Policy
To ensure that all users adhere to your organisation's security standards, we recommend configuring a strong password policy within Application Settings. This will require employees to create passwords that meet your minimum security requirements, such as length and complexity.
Personal Safety Measures
In many security incidents, human error is often the weakest link. To minimise this risk, we strongly recommend that employees do the following:
Avoid sharing passwords
Make use of a secure password manager
Update passwords regularly
Maintain unique passwords across different applications.
By implementing these practices, a user can significantly reduce the likelihood of breaches resulting from compromised credentials, ensuring that your organisation’s sensitive data remains well protected.