Josef is trusted by governments, global firms, multinational corporations and legal aid organisations to process and store data. We believe that customers and end users are the owners of their data – Josef is simply the custodian.
Data is held in ISO-certified servers, protected by world-class infrastructure, practices and security.
Data at rest is encrypted using AES-256, and data in transit using TLS 1.2.
Josef applies automated, continuous vulnerability testing – including SAST and SCA – and independent, third party penetration testing.
Best coding practices and secure coding guidelines are applied.
Josef has undergone third party expert reviews to ensure compliance with privacy obligations, including the GDPR and the Privacy Act 1988 (Cth).