Intranet Security.
Delivering you a safe and secure intranet that you can trust.
Have full confidence you're choosing the right solution, with an ISO certified intranet that's rigorously tested.
A secure cloud intranet trusted by brands worldwide.
When so many 'risk-averse' companies trust a solution, you know you're in safe hands.
From insurance firms, to solicitors and national healthcare systems, we work with a lot of companies who are notoriously cautious about who they trust to handle their data, only choosing solutions that meet their extremely high security standards. We're proud HUB ticks all their boxes as a robust and secure solution, and is their trusted intranet of choice.
Have a security questionnaire?
Securely hosted on the Google Cloud.
Low carbon servers. Zero maintenance.
Great news! HUB is securely hosted on the Google Cloud Platform, ensuring robust and reliable data storage at UK datacentres powered by 85% renewable energy. HUB guarantees you a SaaS intranet solution that always adheres to the highest levels of security, with unlimited data storage, zero maintenance and no impact on your local IT. Plus, we perform nightly backups to AWS servers for added peace of mind.
ISO27001 certified for added confidence.
We take information security seriously.
Protecting your data is our top priority. HUB is proud to be ISO27001 certified in Information Security Management, with the HUB being fully ISO compliant as an intranet software. Our impeccable security policies, processes and robust infrastructure ensure your data and sensitive information is always secure and handled correctly.
Enjoy Single Sign-On and 2FA as standard.
One-click login to your HUB & systems.
Say goodbye to the hassle of multiple logins with single sign-on (SSO). Whether you use Microsoft Active Directory, Azure AD, OKTA, OneLogin, Google, or another HR system, HUB's SSO feature provides a secure, hassle-free way for your users to instantly login to you company intranet. HUB employs Google 2-Step Verification for an extra layer of security, and is compatible with leading multi-factor authentication apps Duo Mobile, Google Authenticator and Microsoft Authenticator.
Infinite scalability and fully responsive.
For an intranet that grows with you.
HUB's infrastructure provides the perfect solution to effortlessly manage and scale your intranet. Kubernetes and Bootstrap are the building blocks powering your HUB, providing automated deployment, infinite scalability and a fully responsive front-end design that's supported across all browsers and devices. Our intranet environments grow to meet your business needs, while always maintaining high speed and performance.
Additional Infrastructure Security.
Making sure your HUB is always secure behind the scenes.
Nightly backups
Backups of all HUBs and their data are conducted nightly on AWS servers, and can be restored at short notice.
Firewall protection
Servers are secured behind 'default deny' firewall rules and locked down to prevent any unauthorized access.
Vulnerability Patched
Servers are regularly patched against known security vulnerabilities. All patches are tested on staging environments to prevent impact to live.
Separate environments
Development, staging and live environments are completely separate, with dedicated virtual servers and totally segregated networks.
Hardened servers
Intrusion detection
HUB is protected by intrusion detection systems (IDS) and intrusion prevention systems (IPS) via our Google Cloud Platform controls.
Isolated databases
Each HUB has a dedicated, logically separated database, providing isolation of client data from other users.
24/7 monitoring
We conduct 24/7 monitoring and protection conducted by our dedicated server management team.
Software Security.
Ensuring your information is always safe and protected.
Secure Frameworks
All forms and URLs are sanitised to protect integrity and prevent SQL injection, Cross Site Scripting, Cross Site Request Forgery (CSRF), etc.
Fully Encrypted
All client data is encrypted when at rest. In transit, all data between HUB and your network is protected with HTTPS & TLS encryption.
Full Audit Logs
Audit logs of user activity are kept on all core database tables, and can be accessed (based on user permissions) in real-time in your HUB.
SSL Secure
HUB only runs over SSL and cannot be embedded into other systems to protect HUB's integrity.
Anti-Virus Protected
IP Restrictions
HUB's can be configured to allow all general access and single sign-on to be locked down to a single or multiple IP addresses or ranges.
Penetration Tested
We conduct regular monitoring and testing of HUB's environments via internal and external penetration tests.
Product Security.
Guarding access to your intranet and its content.
Unique Logins
HUB requires a primary user identifier (UID) to be entered for every user, either email or username, alongside a password in order to login.
Auto Logout
Each HUB Community can be configured to automatically log users out after a custom period of inactivity, i.e. 5 mins, 20 mins, etc.
Restrict User Access
Users cannot see modules or features they do not have permission to access, nor can they see page content that is restricted from them.
Single Sign-On
SSO can be setup as an alternative login method to UID logins, and will automatically opt-in and authenticate users using your systems.
Feature Permissions
Content Moderation
Assign dedicated Owners, Editors and Viewers for specific page content to allow editing permissions or restrict access on a page-level.
2-Factor Authentication
2FA can be setup as an extra layer of security when users login, requiring an additional security passcode from an authentication app.
Fast Permission Updates
Permissions are checked at run-rime, making any changes instant without the need for logging out.
Approval Process
HUB News has a workflow approval process whereby Editors must request content approval from an Approver or Owner in order to publish.
Customisable Password Policy.
Set the bar high for how your users login to your HUB.
Password Encryption
Passwords are encrypted using one-way hashes and separate salt for each client. Common passwords are rejected.
Suspend Failed Logins
Users will be temporarily locked out of their HUB account after five consecutive failed attempts to login.
Autocompletion
Configure your HUB to allow or prevent passwords from autocompleting when a user logs in.
Customisable Strength
Prevent weak passwords by setting up a Password Strength Template, determining the length and character format for all passwords.
Allow / Disallow Reuse
View Logins Report
All user login attempts are recorded, including total number of successful or failed logins, forgotten password requests, login methods etc.
Set Expiration
Set a password expiry period so that users must update their password after a specified number of days. (Default is passwords don't expire).
Password Resets
If a user resets their password, then any other logins with that user's credentials ware immediately invalidated.