Customer support
Search for:
Search Button
Menu
Who we are
Standard
Our purpose & values
–
A little bit about us
Working at Tax Systems
–
What it’s like to work for us
Custom
What we do
Standard
Corporate tax
–
Comprehensive corporate tax compliance
Value added tax
–
Automate your VAT process
Tagging & reporting
–
Automated tagging and reporting solutions
Data management
–
Accurate and secure data collection
Professional services
–
Outsource your reporting and returns
Custom
Info point
Standard
Resources
–
Webinars, whitepapers and more
News & Views
–
Our latest articles
Custom
Contact
Training
Standard
Alphatag
–
Book courses
Free formats
–
New and refresher
Accounts Analysis
–
New and refresher
Tax Accounting
–
Book courses
Group Module
–
Book courses
Accounts Integration
–
Book courses
Custom
Security
Product Releases
Support docs
Tax Table
Home
Search for:
Search Button
Contact Us
Is the use of Tik Tok prohibited in Tax Systems environment due to concerns over data protection, and in line with the actions of UK government?
Security Knowledge Base
Find all your answers here
All Categories
Access Control
Asset Management
Audit Assurance and Compliance
Availability
Backups
Business Continuity
Change Management
Data Protection
Disaster Recovery
Governance and Risk Management
Incident Management
Logging
Operations Management
Organisation
Other Questions
People
Physical and Environmental Controls
Policies
Security in Development
Storage and Processing
Sub-Processors
Supply Chain
Threat and Vulnerability Management
Asset Management
2
Are all assets clearly identified and an inventory of all critical assets maintained?
Is there a process to ensure all company owned assets are returned before an employee leaves?
Explore More
People
5
Does Tax Systems have a policy to manage employees?
Does Tax Systems screen employees before they join?
Does Tax Systems perform onboarding training?
Do Tax Systems employee’s sign confidentiality agreements?
Does Tax Systems require employees to take annual security training?
Explore More
Audit Assurance and Compliance
10
Does Tax Systems adhere to Information Security Standards?
What is the scope of Tax Systems ISO 27001 Certification?
What are the boundaries for the Tax Systems ISO 27001 Certification?
Are there any exclusions in the Tax Systems ISO 27001 certification?
Are there any ISO 27001 Controls that are ‘Not Applicable’?
Do you have a SOC report?
Is Tax Systems SOC 1 or SOC 2 certified?
What mandatory policies does Tax Systems have in place?
Are Tax Systems services security tested?
Does Tax Systems undergo an audit or review and how frequently?
Explore More
Availability
4
How often is data backed up?
What is the availability of services in Tax Systems?
What is Tax Systems product availability SLA commitment?
What is the Service Downtime for Maintenance and Service Updates?
Explore More
Physical and Environmental Controls
2
What is Tax Systems physical and environmental security?
Does Tax System prevent the removal of assets from the Azure Data Centers?
Explore More
Operations Management
6
Do you block third parties from connecting remotely to your environments?
Do you configure remote access methods to prevent unauthorised connections?
Do you periodically review the router / firewall logs, validating filter operation?
Do you allow only authorised ports and services?
Do you have a process on how permissions are granted to access the firewall?
Is the production environment isolated from development or user acceptance test network?
Explore More
Logging
3
Do you appropriately secure the logs against unauthorised access?
Do you periodically review the logs?
Have you enabled logging for platforms, network devices, in accordance with security best practices to track user activity?
Explore More
Storage and Processing
4
Does Tax Systems isolate customer data?
How will Tax Systems protect my stored data?
Will Tax Systems move my data outside of the UK without my permission?
Where is data held?
Explore More
Data Protection
12
Is the use of Tik Tok prohibited in Tax Systems environment due to concerns over data protection, and in line with the actions of UK government?
Does Tax Systems classify information?
Who owns the data stored by Tax Systems?
Will Tax Systems have access to customer data?
Does Tax Systems share customer data with 3rd parties?
What are 3rd party rights over access to customer data?
How can data be retrieved?
What happens to it if I stop using the service?
How will Tax Systems protect my stored data?
How long does Tax System retain customer data?
Explore More
Change Management
2
What processes and procedures are in place for Change Management?
Do you notify customers of changes?
Explore More
Threat and Vulnerability Management
12
Does Tax Systems use firewalls?
Does Tax Systems use URL filtering?
How does Tax Systems protect from malicious emails?
Does Tax Systems protect laptops from malware?
Does Tax System monitor vulnerabilities out of hours?
Can customers view the results of independent tests?
Are Tax Systems solutions independently tested?
How often are security risk assessments done?
Who does Tax Systems monitors for Information Security attacks?
How does Tax Systems protect laptops from unauthorised use?
Explore More
Incident Management
3
Does Tax Systems have a formal Incident Response plan?
How and when will Tax Systems inform me if an incident or a breach have compromised my personal data?
Has Tax Systems had a security breaches within the last 5 years?
Explore More
Security in Development
2
Does Tax Systems use vulnerability scanning tools in development?
What coding standards does Tax Systems use?
Explore More
Supply Chain
3
Does Tax Systems have supplier migration plans?
Does Tax Systems use suppliers outside of the UK or EU?
How often are suppliers agreements reviewed?
Explore More
Governance and Risk Management
5
Is Tax Systems Cyber Essentials certified?
What ISO 27001 Statement of Applicability (SOA) controls are ‘Not Applicable’ for Tax Systems certification?
Does the Tax Systems ISO 27001 scope cover the services provided to customers?
How often are reviews conducted on policy?
How does Tax Systems manage risk?
Explore More
Sub-Processors
1
Does Tax Systems maintain a list of sub-processors?
Explore More
Policies
11
Does Tax Systems monitor compliance with the policy and are the consequences of non-compliance clearly documented and communicated?
How often does Tax Systems review its policies?
What is Tax Systems plan for Disaster Recovery in the event that the UK South Region becomes unavailable?
Does Tax Systems require all employees and contractors associated with the services provided , to periodically sign that they understand and are awareness of security policies and procedures?
Does Tax Systems communicate the information security policy to all employees, contractors and service providers?
Does Tax Systems have a Clear Desk policy?
Does Tax Systems have a Bring Your Own Device (BYOD) policy
Does Tax Systems have a Business Continuity and Disaster Recovery policy?
Does Tax Systems have an access Control for all standard, privileged and system accounts
Does Tax Systems have security configuration standards for networks, operating systems, applications, desktops, and mobile technology
Explore More
Organisation
2
Do Tax Systems define roles and responsibilities for individuals in the security function?
Does Tax Systems have an information security function responsible for security initiatives?
Explore More
Access Control
4
Does Tax Systems separate Admin accounts from everyday user accounts?
Are Admin accounts associated with employee names?
Can Tax Systems infrastructure be accessed from the internet?
How does Tax Systems assign privilege to accounts?
Explore More
Business Continuity
3
Does Tax Systems have a Business Continuity Policy?
How often does Tax Systems perform or review Business Impact Analysis (BIA)?
How are customers informed of Business Service Impacts?
Explore More
Disaster Recovery
7
Does Tax Systems have a Disaster Recovery Plan?
Where are the Tax Systems Disaster Recovery site?
How often are Disaster Recovery Plans tested?
How long does Tax Systems estimate it would take to restore service in the event of a disaster?
What happens to the performance and responsiveness of the UK West Region if the UK South Region is unavailable?
Is Tax Systems certified to ISO27031?
What is Tax Systems back up procedure?
Explore More
Backups
2
How does Tax Systems monitor and test data replication, and what tools does it use for automatic monitoring?
How does Tax Systems use Serverless SQL and what is the data retention period for replicated data in Microsoft Azure Cloud services?
Explore More
Other Questions
1
Need more help?
Explore More