Our Safety Promise to you (ISMS)
Large amounts of sensitive data are handled in the HSE and HR sector. Clients from a wide range of industries entrust us and our eplas software with a lot of issues, including sensitive employee data.
Therefore, the safety of information processing and the protection of personal data are very important to us. As a processor in connection with our management solution eplas, we consider information security and data protection an indispensable customer service. Therefore we wanted to increase the confidence that our customers, partners and service providers have in us as a company even more, which is why we have decided to already introduce an Information Security Management System (ISMS) in 2020.
The following certifications guarantee maximum safety for your data as our customer:
- ISMS implementation
- Compliance with ISO 27001 requirements
- Compliance with TISAX Level 3 requirements with the addition of "particularly sensitive data".
We have our company, our IT infrastructure and eplas audited at regular intervals by external IT security companies. The results of the so-called penetration tests (PEN tests) help us make our eplas solution, our IT infrastructure and our company even more secure.
As part of the integrated management system, we are additionally working on certification according to ISO 9001 and 45001.
To verify the ENX (Tisax) specifications, the questionnaire on information security of the German Association of the Automotive Industry (VDA ISA) had to be processed. The subsequent assessment, including a comprehensive on-site audit, was carried out by the TISAX testing service provider DEKRA Certifications GmbH.
The result is exclusively available via the ENX portal: Under Scope ID: S34R90 and Assessment ID: ACZ9NM-1.
With TISAX (Trusted Information Security Assessment Exchange), the ENX Association supports a common standard for information security assessments in the automotive industry on behalf of the VDA. The TISAX assessments are carried out by accredited testing service providers whose qualifications are regularly checked. TISAX and the TISAX test results are not intended for the public.
Licensing models are often rigid and difficult to understand. It is often only after the contract has been concluded that one notices that the "nicely calculated" licences are not sufficient in practice, and sometimes you have to pay for expensive additional licences. Not with eplas: easy, comprehensible and transparent!
Everything is moving into the cloud - many software solutions are even only available as cloud versions/SaaS. But what if your preferences change and if the often conjured "cyber war" does after all take data centres worldwide into focus? What do you do when your company's management stipulates that you bring critical systems in-house? With eplas you are completely flexible. Switch between SaaS and on-prem without any problems whenever you deem necessary!
We value a simple and transparent licensing policy. eplas is licensed exclusively based on the number of employees in the company. Employees include both the company's own employees as well as the number of regularly employed temporary workers (ANÜs, etc.). The number of employees working in the system at the same time is not limited, nor is the number of administrators.
Practice has shown that licensing according to administrators or "concurrent users" is difficult to calculate for the customer and is usually more expensive, which only leads to a reduced use of the system. eplas modules must always be licensed with the same employee base. Only one form of licensing is possible: either rent or purchase. Mixed licensing (rent and purchase at the same time) is not possible.
Purchase or lease? You are free to decide. For example, start with the lease model and switch to the purchase model if necessary. By subscribing, you always have access to the latest eplas version - there are no chargeable "major releases" or other hidden cost traps with us!
By the way, the choice between leasing and buying is independent from whether eplas is used as a SaaS solution or on-prem.
Upon request, we will prepare an individual eplas offer for you. Our prices have been stable for years and are subject to very few fluctuations.
A purchase of eplas means that the software is made available for an unlimited period of time. The subscription is obligatory in the first year and can optionally be booked as of the second year. The subscription includes free support (by telephone and e-mail) and the right to use the latest version of eplas.
The lease represents a temporary provision of eplas. The leasing fee includes support (by telephone and e-mail) and the subscription, i.e. the right to always use the latest version of eplas.
The licence costs are the same for you with both models.
Every company has its own IT strategy and has valid reasons for choosing it. Be it the size of the company, the core business or the location - the challenges are complex and require different processes and strategies. But they all have one thing in common - that IT must comply with the latest security requirements.
Based on the circumstances of our customers we offer our eplas software both
- On-Prem and
- SaaS (Software as a Service).
You provide the required server components - eplas is installed in your network.
Your advantages with On-Prem:
- You operate the software in your own IT structure.
- You keep all data in-house.
- Single sign-on and other local services can be used more easily.
- You can control the server structure and IT security yourself.
Your advantages with SaaS:
- We host eplas for you.
- We provide the entire server IT infrastructure.
- We cover the licence and server costs.
- We take care of IT and data security.
- We take care of data backups.
- We scale the performance of servers and connections.
- We install all eplas updates free of charge.