Security is our priority

Foci is build on the highest security and privacy standards.

Security & privacy

Our commitment to data security and privacy is built into every aspect of our applications. Hosted on Microsoft Azure in Amsterdam, our solutions comply with GDPR and other international standards, ensuring that your data is processed and stored securely. We apply the highest standards of data protection, encryption, and user authentication to maintain the confidentiality and integrity of your information.

Hosting & data processing

Hosting: Our applications and database are securely hosted on Microsoft Azure in Amsterdam.
Data Processing: We only process or store data necessary for functionality, such as:
- Application settings
- Empty templates
- Document metadata (or the document itself, if chosen)
- Essential personal data for application configuration

Data retrieval & compliance

Data Retrieval: Wherever possible, data is retrieved directly from external sources (e.g., SAP SuccessFactors) using secure APIs.
Compliance: All solutions comply with GDPR, safeguarding user privacy and data protection standards.

Security measures and ISO

Certifications: We are ISO27001 and ISAE 3402 certified, attesting to our commitment to information security.
Encryption: Data is securely stored in our database and encrypted on disk to prevent unauthorized access.
HTTPS: All communication is conducted over HTTPS to protect data in transit.
User Authentication: Only authenticated users have access to our platform.

SAP SccessFactors integration

Document Storage: Generated documents can be stored within SAP SuccessFactors using the Attachment framework.
MDF Objects: Metadata Framework (MDF) objects may be created in SAP SuccessFactors to organize documents.

Data Retrieval for Document Generation: Data for documents is retrieved from SAP SuccessFactors during generation via OData APIs.
E-Signature Integration: Generated documents are sent to the e-signing provider using OData APIs.

API usage

Employee Data Access: We use SAP SuccessFactors APIs to query and update employee data.
Comprehensive API Support: For more information on available APIs, please refer to the following page

Single Sign-On (SSO) integration

SSO with SAP SuccessFactors: The Document Manager integrates with SAP SuccessFactors using Single Sign-On (SSO).
Security Protocols: SSO supports OAuth 2.0 and SAML 2.0, with signed messages via X.509 certificates.
Permissions: User permissions follow SAP SuccessFactors configurations, ensuring secure and appropriate access.
HTTPS: All SSO communication is encrypted via HTTPS for secure data transmission.