Refari Data Security

Created by Aaron Refari, Modified on Tue, 4 Apr, 2023 at 3:13 PM by Aaron Refari

Here at Refari we are committed to ensuring our client and candidate accounts data is kept safe and secure. We do this by routinely assessing, testing, and improving the technology, controls, processes and procedures that govern the management of our systems.


Access Control

Refari has procedures in place to ensure user-level access control. These different company memberships as well as different user levels within a company ensures only data required for that individual user is presented to them.


SSL & TLS

Refari widgets are only installed on sites with a valid SSL security certificate to ensure optimal user experience when signing in to Refari via SSO (Single Sign ON). Furthermore, all data sent to and from Refari’s API is sent using SSL (Secure Sockets Layer), which in turn is connected to our data storage device using TLS (Transport Layer Security.) We also have application-level protection from SQL injection.


Data storage and Encryption

All sensitive information is encrypted using the industry-standard AES-256 encryption algorithm on our AWS RDS instance – information provided by AWS.

Data is stored on the AWS Sydney datacenter ‘Asia Pacific (Sydney)ap-southeast-2’ - data center security can be assessed here. 


Secure Hosting

Refari is hosted by AWS Cloud. AWS security entails data encryption at rest and in-transit, hardware security modules and comprehensive physical security which all contribute to a secure cloud system.

The AWS cloud system provides us with the capability to control, audit and manage identity, configure usage, as well as meet our government and private client’s compliance, governance and regulatory requirements.


Management of payment information

In accordance with our payment gateway’s best practice, we do not store full payment details on our Refari servers. Transmitting this data over SSL to Stripe.com for storage and management.  Stripe’s data security information can be found here.


Internal Multi-Factor Authentication and  access restriction

Whilst all Refari core services enforce a strict password policy. Refari team members are also forced to use Multi-Factor Authentication to access AWS infrastructure, Mailgun email service and the Refari code base. The live AWS database and Mailgun email service have limited access, preventing most team members from being able to see or edit this data.


Refari sign-in Multi-Factor Authentication  - Available on request

Whilst Refari enforces a strict password policy. Refari clients may also request Multi-Factor Authentication be turned on. This can:

- Enable individual users to opt for MFA

- Enable organizations to define MFA policy to ensure force their users to enable MFA


Need more information?

Want more information about our Data Security you can email support@refari.co to submit a request as an additional security measure, we do not take meetings to discuss our data security. This is to prevent unvetted information leakage and to prevent malicious actors from using social engineering techniques to gather information in an attempt to find potential vulnerabilities. 

Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article