4 Questions You Should Ask about Data Security
4 Questions You Should Ask about Data Security

4 Questions You Should Ask about Data Security

When considering an HR or payroll provider, security is paramount. To handle your HR functions and to process your company’s payroll, the provider has all of your employees’ most confidential and crucial data. You should be asking, “What do they do to protect it?” Here are four key questions you should ask any potential providers about security.

1. Do you have an outside review of your systems such as a SOC 1 or SOC 2? If so, how often and when was the most recent?

Service organizations that affect the financial statements of their clients are often asked to provide a SOC 1 or SOC 2 audit report. These voluntary audits are performed by outside firms and assess the security of the service provider. Examples of companies that typically have SOC 1 or SOC audits include payroll processors, data centers, medical claims processors and Software as a Service (SaaS) companies. For example, Paycor does a SOC 1 audit annually.

2. What are you doing to protect your systems against attacks from the outside or inside the company?

Attacks from the outside can compromise your sensitive data. The provider should conform to best practices to protect their infrastructure and your data. Some defense measures include:

* Layered network security
* Network traffic encryption according to industry standards
* Network traffic monitoring to identify suspicious-looking activity
* Auditing and notification capabilities
* Regular third-party penetration tests and security assessments

To prevent attacks from the inside, or from the service organization’s employees, ask them if they have confidentiality policies and regular mandatory training for all employees about how to keep client data secure.

3. What are you doing to protect against fraudulent activity?

Many of the defense measures listed above also come into play when it comes to protecting against fraudulent activity. However, best-in-class service providers may also implement the following in order to detect and prevent fraud:

* Internal auditing and quality assurance practices
* Secure document shredding services
* Independent reviews and audits
* Employee reference checking
* Clear policies and standards for employees

4. What is my role as a client or user, and what are my responsibilities when using your product?

Clients and providers must work together to protect sensitive employee data. It doesn’t matter how many controls the provider has in place if the client leaves passwords where anyone could find them, or does not have processes to catch errors or fraudulent activity on the part of their employees. Many data security mishaps can be avoided if clear expectations are set from the beginning.


Want to learn more about keeping your data secure? Connect with a Paycor representative to discuss how we protect your most sensitive information.

More to Discover

Webinar: National Payroll Week Webinar Series: COVID's Impact on Multi State Taxation

Webinar: National Payroll Week Webinar Series: COVID's Impact on Multi State Taxation

During National Payroll Week, Paycor hosted three webinars to help business leaders prepare for compliance changes and new trends in 2021.The COVID pandemic has forced many employees to shift from the office to remote work environments. As many organizations juggle the new challenges, business leaders must also evaluate their expanded footprint and how taxes are impacted. In this webinar, Paycor’s resident tax expert, James Schwantes will highlight tax considerations employers need to know.Speaker: Jim Schwantes

Webinar: National Payroll Week Webinar Series: How to Prevent a Payroll Lawsuit

Webinar: National Payroll Week Webinar Series: How to Prevent a Payroll Lawsuit

During National Payroll Week, Paycor hosted three webinars to help business leaders prepare for compliance changes and new trends in 2021. In this webinar, we'll breakdown everything HR leaders need to know to avoid costly errors and payroll lawsuits.Speaker: Becky Stauffer Becky started her own consulting company Work4Accord, LLC where she serves National and Regional clients. Becky is a “Professional Encourager of Others”. She is active in communities that support professional growth including the SHRM, Society for Human Resource Management and the NSA, National Speakers Association. Becky holds a SPHR, Senior Professional in Human Resources, SHRM-SCP Senior Certified Professional and a Master’s in Public Administration from the...

Webinar: Getting it All Done: 6 Compliance Issues your HR Department Must Embrace - 10/27 @2pm ET

Webinar: Getting it All Done: 6 Compliance Issues your HR Department Must Embrace - 10/27 @2pm ET

For HR departments to avoid costly errors and fines, there are 6 areas of compliance they need to consistently follow. During this webinar, we’ll breakdown each area and provide actionable steps to take to gain visibility as a strategic HR leader at your organization. Don’t miss this session! Register now. Speaker: Lori Kleiman Lori Kleiman is a business expert with more than 25 years of experience advising companies on HR issues. Her background as a human resources professional and consultant gives her unique insight on how HR professionals and executives can work together effectively to achieve business goals. Her programs are designed to provide critical HR updates and best practices to small businesses. In addition, she is has served...

Webinar: National Payroll Week Webinar Series: Payroll Compliance Updates & What's Ahead in 2021

Webinar: National Payroll Week Webinar Series: Payroll Compliance Updates & What's Ahead in 2021

From new salary thresholds and social security wage increases to COVID tax relief, businesses leaders have faced quite a few payroll and tax changes in 2020. As we prepare to turn the page to a new year, what new updates are on the horizon? Join Paycor’s resident payroll expert, Arlene Baker to learn about the latest updates and what you should watch out for in 2021.Speaker: Arlene Baker Arlene Baker is a Sr Compliance Analyst with over 40 years of payroll and tax experience. Arlene is a member of the National Payroll Reporting Consortium focusing on IRS compliance. Arlene has been a member of the national and local APA for 25 years and is an active member of the American Payroll Association Hotline and SPLTF Hospitality Industry...