Security Statement
This page outlines the general security approach used in relation to the Platform and associated operational systems.
1. Security approach
Reasonable technical and organisational measures are intended to be used to help protect Platform data, operational records, uploaded files, reports, and related information against unauthorised access, disclosure, misuse, alteration, or loss.
2. Access controls
Access to Platform systems and operational data should be limited to authorised users, authorised operational personnel, and approved service infrastructure where required for legitimate operational, technical, support, security, or maintenance purposes.
3. Data transmission and storage
Appropriate measures should be used to protect data during transmission and storage. Security measures may include encrypted connections, infrastructure protections, access restrictions, credential controls, logging, and environment separation where appropriate.
4. Uploaded files and operational records
Uploaded files, operational review records, generated reports, audit history, and related records may contain sensitive operational information and should be handled with appropriate care and restricted access.
5. Third-party infrastructure
The Platform may rely on third-party infrastructure providers, hosting providers, cloud services, storage systems, analytics providers, APIs, and operational tooling. Security practices of third-party providers may affect overall Platform operations.
6. Incident response
Reasonable efforts may be made to investigate, contain, assess, and respond to suspected security incidents, misuse, operational disruption, or unauthorised access where identified.
7. User responsibility
Users remain responsible for maintaining appropriate internal controls, protecting credentials, managing authorised access, verifying outputs, and ensuring secure handling of exported files, reports, and downloaded materials.
8. No absolute guarantee
No platform, infrastructure provider, software system, or internet transmission method can guarantee absolute security. While reasonable measures may be used, security incidents, outages, vulnerabilities, misuse, or unauthorised access cannot be entirely eliminated or guaranteed against.
Last updated: 2026