Sign up for a free 14 day trial
In just 30 seconds, you will be using a full version of breatheHR
*No obligation to buy or credit card required
We take the security of your data and the reliability of access very seriously
The security and reliability of access to your data is core to everything we do. You are trusting us with valuable data and we take that responsibility very seriously. This page will give you information about how we protect your data and provide reassurance that you will always get access to it whenever and wherever you need.
breatheHR is a trading name of Centurion Management Systems Ltd, a UK company that has been implementing HR systems for over 21 years.
We take the protection of your employee records very seriously and our aim is to provide you with the highest level of data security. We constantly review and reinforce our security practices and the following documents lay out how your data is protected.
We are registered with the Information Commissioners Office and guarantee that your employee data never leaves the EU.
At breathe, we have always taken data security and privacy extremely seriously and believe that the GDPR is an important step forward for clarifying and enabling individual privacy rights. We are committed to GDPR compliance when enforcement begins May 25, 2018.
Under any compliance regime, it is easy to state compliance but much harder to prove it. To this end, we have taken the decision to achieve our own ISO27001 accreditation that will sit alongside the accreditation of our hosting provider Amazon Web Services.
You or your IT / IS colleagues may have further questions about how we securely manage your data so our CTO, Gareth Burrows, has written this Security & Reliability white paper containing answer to common questions.
Finally, we retain a CISSPs and CREST accredited security company to test our systems for security weaknesses. This uses the same techniques as real attackers so we can be sure your data is safe.
Our latest audit found “There were no opportunities for an attacker without credentials to access the authenticated area of the breatheHR application”. Which in layman’s terms mean they couldn’t get in without knowing the password.
We know how important it is that you can access your HR data when and wherever you need. Our servers are configured to provide an exceptionally high level of reliability and redundancy.
We’ve set up status.breathehr.com with a 3rd party monitoring company so that you see for yourself.
Credit card information.
We do not hold or process any credit card information on our servers. From the very first moment that you enter your credit card details they are managed and protected by one of the most trusted credit card processors in the industry, Realex Payments.
Terms and conditions.
Every breatheHR account operates under the same Terms & Conditions. We try to keep the legals to a minimum but its important to get them right so that you know how things stand.