Oncore's ISO is accredited and is committed to stringent security protocols for protecting and managing client/contractor data.
Our organisation is ISO 27001:2022 accredited, meaning we have been independently certified for meeting the international standard for information security management systems. This demonstrates our commitment to stringent security protocols and best practices for protecting and managing client data. Additionally, data is encrypted using AES-256 and stored in a secure cloud environment certified to ISO/IEC 27017 and ISO/IEC 27018 standards for cloud security and privacy.We have a comprehensive data breach policy in place that ensures compliance with Australian Privacy Laws. This policy governs the timely assessment and notification process in the unlikely event of a data breach to minimise impact and maintain transparency.
We are required to retain client-related data for 7 years to comply with legal and regulatory requirements. Our policies ensure data is only retained as long as necessary, securely managed during its lifecycle, and securely disposed of when no longer required.