Security is an integral part of what makes the SMART system such a valuable asset to any organisation. We developed the SMART system with the UK government in mind so security is the main feature of the application.

• Information security management system (ISMS) policy
  We have a policy in place to see that all responsibilities are adhered to at all stages of our relationship with client data. The purpose of the ISO 27001 Policy is to protect the organisation’s information assets from all threats, whether internal or external, deliberate or accidental.
  
  
• Firewall
  Firewalls are an integral part of the security service offered from Qbase. We use Checkpoint NG firewall suite, which is a highly regarded, industry standard security application. In conjunction with perimeter protection of SmartDefence which is a content inspection engine built into the firewall which looks for malicious activity and acts to end any connection breaching our policy configuration.
  
  
• Encryption
  SMART is designed to offer total safety from any electronic threat and guarantees a minimum of 128 bit encryption on any secure application gateway. This provides minimum risk of them being intercepted by any third party. We use Thawte SSL to secure our applications and when a web browser tries to connect it ensures that the SSL certificate is digitally signed to start an encrypted connection.
  
  
• Servers
  Our servers are kept securely at THUS data centre in Warrington. THUS plc is a purpose built data centre which provides Qbase with network capacity and physical server space. Network access to these servers is protected by further firewall protection. Thus’ data centre is protected 24 hours a day.
  
  
• Secure File Transfer Account
  Our SFTA is designed for you or your suppliers to safely upload or download data from our servers with a confidence that enables you focus entirely on the task at hand. Secured via our HTTPS transfer this process is password protected and the user will only be allowed to see their own data.
  
  
• User permissions
  SMART is built around a flexible security hierarchy, providing you with complete control over the users, communications, and data. These permissions are deployable on a hierarchical scale so users can only see information based on their position within the organisation.
  
  
• Network restriction
  IP restriction ensures only pre-specified IP addresses are allowed access to the system. A list of trusted users is compiled and their unique addresses are mapped and placed onto a list in the server. Only these IP addresses are then allowed into SMART.