The security of corporate data and applications is a key priority for any modern organisation.
The SmartFP platform has been designed with security, flexibility and scalability in mind, making it the ideal choice for deployment in businesses of all sizes. With a wide range of security features and support for advanced technologies, SmartFP ensures that your sensitive data is always protected.
Single Sign-On (SSO) support with integrated two-factor authentication (2FA)
SmartFP offers integration with leading identity providers such as Microsoft Azure Active Directory and Google Workspace through Single Sign-On (SSO). This feature allows users to log into SmartFP using their existing corporate accounts, simplifying user management while enhancing security.
When you use SSO from Microsoft and Google, two-factor authentication (2FA) is also automatically supported, which is a native part of these services. This means that in addition to a password, users must use a second authentication factor such as a mobile app, biometric or SMS code. This level of authentication provides additional protection against unauthorized access, minimizing the risk of compromised accounts.
Flexible deployment: on-premise or in the cloud
SmartFP offers the option of deploying both locally (on-premise) in your own infrastructure and in a secure cloud, such as Microsoft Azure. This flexibility allows you to choose the solution that best suits your security requirements and infrastructure.
In an on-premise deployment, you have complete control over where and how your data is stored, and you can limit access to the platform to your internal corporate network or secure access via VPN, for example. In the cloud, you benefit from the advanced security and scalability provided by Microsoft Azure, including built-in protection against DDoS attacks and encrypted data transfer.
Transparent audit logs and forensic activity tracking
One of the key security features of SmartFP is the thorough monitoring of all user activities through audit logs. Each user has their own account, so all actions they take are recorded in detail. This includes operations such as data exports, changes to data mailboxes, invoice approvals or contract modifications.
The records in audit logs become an invaluable tool during internal audits or in situations where it is necessary to analyse a problem or error. It may happen that an authorised user takes an incorrect action, for example approving a document with incorrect data. It is in these cases that audit logs allow you to trace exactly who performed the action and when, making it easier to perform internal controls and address potential security incidents.
While access to sensitive functions is controlled by strict permissions, the ability to trace back all activity ensures that even in the event of human error, you have full visibility of what happened and what corrective action can be taken.
Detailed access control (RBAC)
SmartFP uses Role-Based Access Control (RBAC) to precisely control the access rights of individual users. This enables precise permission settings for each module of the platform, ensuring that users have access to only the features and data they need to do their jobs. This minimises the risk of unauthorised access and overloading the system with redundant permissions.
In addition, this fine-grained access control is fully customizable to your internal processes. For example, you can define specific rights for individual teams, departments or individuals, allowing you to tailor access rules to your organisation’s exact needs.
Reliability thanks to modern technology
SmartFP is built on robust and proven technologies such as .NET Framework, C#, Microsoft SQL Server and Windows Server. These technologies are standard in corporate environments and provide high levels of reliability, security and performance.
As a result, SmartFP offers a stable and secure platform for businesses of all sizes, from small businesses to large corporations. These technologies have long-term support and ongoing development, ensuring protection from the latest threats and allowing you to scale as your organization grows.
Data encryption and secure communication using HTTPS
Data security is ensured by HTTPS encryption. This technology ensures that all communication between users and the SmartFP platform is protected against eavesdropping or unauthorized access. HTTPS uses strong encryption protocols that protect both the data being transmitted and the data stored on the servers.
In this way, sensitive information such as personal data, documents or invoices are protected and communication between the user and the application is secured against possible misuse.
High Availability
SmartFP supports High Availability (HA) deployments, which ensures continuous operation even if a part of the infrastructure fails. HA mode leverages technologies such as database replication, load balancing, and failover mechanisms that enable automatic failover to backup systems when the primary system fails. This way you can minimize downtime and ensure that your critical processes are always available.
For example, if one server fails, an automatic switchover to a backup server occurs, ensuring that platform operation continues without interruption. This approach is ideal for businesses that require high availability and minimise the risk of data loss or unplanned outages.
Application and database layer separation, backup instances and fast recovery
SmartFP supports the separation of the application layer from the database layer, providing greater security and scalability. By separating the two layers, direct access to sensitive data can be prevented, increasing overall application security.
In addition, SmartFP offers the option of deploying backup instances, which allows for rapid recovery in the event of a failure of the main instance. This option ensures that your data is protected and recoverable in minutes, minimizing the impact of unplanned outages on your business.
Regular updates and SLAs to ensure security and uptime
With an active SLA (Service Level Agreement), we provide regular updates to the SmartFP platform to ensure that your installation remains secure and up-to-date at all times. These updates include not only fixes for potential security vulnerabilities, but also minor functionality enhancements that increase the efficiency and security of the platform. The SLA also includes a guarantee to resolve any issues within the agreed timescales.