FAQs

Behavioral analytics is a data-driven approach that systematically analyses patterns and behaviors exhibited by individuals, systems, or entities within a specific context or domain. This analytical method leverages various data sources and techniques to gain insights into human or system behavior, facilitating the detection of anomalies or opportunities for optimization within an organization.

Behavior Data analytics provides insights into patterns of user behavior. Our user-focused solution here gives you a visual representation of both normal and unusual user behavior in your organization, helping you in the early detection of potential security incidents.

The dashboard, focused on cyber security behavior, typically analyzes patterns in user activities to identify potential security threats or breaches. The dashboard integrates data from the LMS database, where the users’ assessment data is captured.

The prime feature of our dashboard is the real-time analytics scores, calculated from risk-simulation scenarios and learning assessments separately. Our dashboards are shareable and downloadable and are customizable as well, depending on client requirements.

Behavior Risk Score, Cyber Security User Confidence, and Secure Behavior are three major insights shown on our Behavior Analytics Dashboard. These are calculated from real-life scenario questions from within the course modules.

Absolutely. We may customize the solution to align with your specific needs to ensure that it addresses unique cyber security challenges.

The dashboard uses data from both blind spot and learning assessments incorporated in our training modules.

Your data privacy and security are always our top priority. We employ row-level security controls (RLS) within Power BI and manage user access through secure workspaces. We share dashboards and reports with our users via dedicated Power BI accounts.

By utilizing our behavioral analytics tool, you get an understanding of the human cyber security blind spots within your organization. Our solution assists you in human cyber security risk mitigation and improving security controls to compensate for human risks. The proactive nature of the dashboard contributes to a more resilient and secure digital environment.

Cyber security is crucial in BFSI because this sector deals with sensitive financial data, substantial monetary transactions, and personally identifiable information (PII), making it a prime target for cyber threats. A breach can lead to financial loss, reputation damage, and erosion of customer trust.

BFSI institutions can protect against cyber attacks by implementing multi-layered security measures such as firewalls, intrusion detection systems, and encryption. Key strategies include regular security audits, vulnerability assessments, and compliance with international standards like ISO/IEC 27001, as well as employee training, robust access control, and continuous monitoring of network activities.

Employees are both a first line of defense and a potential vulnerability. They play a crucial role in identifying and preventing security breaches by adhering to security policies, reporting suspicious activities, and practicing good cyber hygiene. Regular training ensures employees know the latest threats and understand the appropriate responses.

To secure online transactions, BFSI institutions should use strong encryption for data transmission, implement secure authentication methods (like two-factor authentication), and ensure compliance with Payment Card Industry Data Security Standards (PCI DSS). They should also regularly update systems, monitor transactions for fraudulent activities, and use secure and certified payment gateways. 

Consequences include financial loss due to theft or fraud, regulatory fines, legal action by affected parties, and reputational damage. A breach can also lead to losing customer trust, impacting long-term business viability. The institution may face increased scrutiny and must invest significantly in security improvements and public relations efforts.

A cyber security incident response plan is essential for quickly and effectively addressing security breaches. It minimizes financial losses, legal repercussions, and damage to reputation. The plan should include incident detection, assessment, containment, eradication, recovery, and post-incident analysis procedures. It’s also crucial for meeting regulatory requirements and maintaining customer confidence.

Training is essential due to the sensitive nature of financial data and the sophistication of cyber threats targeting BFSI. It ensures employees understand the importance of cyber security, comply with regulatory requirements, and are equipped to protect customer data and the institution’s digital assets. 

BFSI cyber security training typically covers data protection and privacy, secure handling of customer information, awareness of social engineering tactics, secure use of digital tools and platforms, compliance with regulatory standards, and protocols for reporting and responding to security incidents. It also often includes best practices for remote work and using mobile devices securely.  

Simulation-based cyber security training in the BFSI sector enhances cyber defenses by providing employees with realistic experiences of cyber threats, boosting confidence, and ensuring compliance with regulations. It cultivates a robust cyber security culture, which is crucial in a sector where cyber incidents can have severe consequences.

IT security audits and risk assessments are essential for financial institutions due to the sensitive financial and personal information they handle. Cyber threats and attacks can jeopardize the security of this information, making it essential to have measures in place to protect against such threats. Additionally, financial institutions are bound by regulatory compliance requirements, which mandate them to ensure the security of their IT systems and data.

In cyber security, blind spots are zones within an organization’s systems, networks, or procedures susceptible to security threats but lack sufficient monitoring or protection. These blind spots encompass unnoticed vulnerabilities, unauthorized access points, or gaps in security measures. They represent hidden, unaddressed risks, making them attractive targets for cybercriminal exploitation.

Blind spots in cyber security pose significant dangers because they represent vulnerabilities within an organization’s digital infrastructure that are not adequately monitored or protected. Cybercriminals exploit these blind spots to gain unauthorized access, steal sensitive data, or disrupt operations. Their undetected nature allows attackers to carry out malicious activities without detection, escalating the risk of successful cyberattacks.

The blind spots in cyber security typically include unmonitored or unmanaged devices, such as personal smartphones or IoT devices, outdated software, shadow IT, weak passwords and authentication methods, susceptibility to phishing and social engineering tactics, unrealistic risk assessments, human error, etc.

To spot blind spots in cyber security, regularly assess your digital setup for overlooked vulnerabilities. Stay updated on emerging threats and trends, collaborate with colleagues and IT experts, and consider external audits for fresh insights.

Individuals often have several critical security blind spots that can leave them vulnerable to cyber threats. These include using weak passwords, failing to enable two-factor authentication, falling prey to phishing attacks, neglecting to update software regularly, and having inadequate device security. Additionally, people may not realize the importance of securing their home networks, avoiding sharing sensitive information over unsecured channels, and practicing safe browsing habits. These blind spots can result in identity theft, financial fraud, and malware infections.

Business blind spots for cyber security include inadequate employee training, insufficient network security measures, failure to perform regular security assessments, neglect to update software and systems, and not establishing a comprehensive incident response plan. These blind spots can lead to cyber threats like data breaches, financial loss, and reputational damage.

In cloud computing, blind spots arise due to its complexity, shared responsibilities, and potential for unauthorized service use (shadow IT). Additionally, limited visibility into cloud environments and compliance challenges can exacerbate blind spots, increasing the risk of security vulnerabilities and regulatory violations.

The latest blind spots in cyber security include supply chain attacks, zero-day exploits, remote work security challenges, cloud misconfigurations, ransomware-as-a-service, deep-fake threats, and vulnerabilities in IoT and OT networks.

Training and awareness programs assist individuals in recognizing common cyber threats, implementing preventive measures, responding effectively to security incidents, and complying with relevant regulations, thereby reducing the occurrence of blind spots.

Risk assessment is crucial in identifying blind spots by systematically evaluating potential vulnerabilities and threats within an organization’s systems, processes, and infrastructure. Through risk assessment, organizations can pinpoint areas where security controls may be lacking or inadequate, leading to blind spots. By conducting thorough risk assessments, organizations can proactively identify and prioritize areas for improvement, helping to mitigate blind spots and strengthen their overall cyber security posture.

Cyber Security Awareness Month (CSAM) is an annual campaign held in October to promote cyber security awareness and encourage individuals and organizations to adopt best practices, ultimately strengthening digital security.

Cyber Security Awareness Month (CSAM) is crucial for organizations as it reduces cyber security risks, enhances employee awareness, and ensures compliance, ultimately safeguarding sensitive data and reputation. Active participation in CSAM is a proactive step toward protecting digital assets and maintaining stakeholder trust.

The primary objectives of observing Cyber Security Awareness Month (CSAM) are to promote awareness about cyber security risks, educate individuals and organizations on best practices, foster a culture of cyber security, and encourage proactive measures to enhance digital security.

Organizations can strengthen cyber security during Cyber Security Awareness Month (CSAM) by setting clear goals, allocating resources, creating engaging training content, fostering employee involvement, and evaluating progress, ensuring the effective use of CSAM to enhance cyber security.

Organizations can make the most of Cyber Security Awareness Month (CSAM) by leveraging it to improve cyber security measures and cultivate a more vigilant and informed approach among employees toward cyber security practices by introducing engaging activities and training sessions.

Practicing Cyber Security Awareness Month (CSAM) improves a nation’s or region’s cyber security by increasing awareness, education, and collaboration among stakeholders. It also encourages the development of policies, fosters readiness, and contributes to a cultural shift towards greater cyber security responsibility.

Organizations that should actively participate in Cyber Security Awareness Month (CSAM) include businesses, government agencies, educational institutions, nonprofits, security professionals, media and technology companies, community organizations, parents, caregivers, and critical infrastructure providers. Their participation is vital to bolster cyber security practices and awareness across various sectors of society.

To create an effective Cyber Security Awareness Month (CSAM) program, organizations should set clear goals, allocate resources, engage leadership, target the audience, develop engaging content, schedule activities (including effective training sessions), promote involvement, measure progress, gather feedback, collaborate, evaluate, and plan for sustainability.

During Cyber Security Awareness Month (CSAM), organizations can conduct various activities to promote cyber security awareness and best practices. These activities may include workshops, phishing simulations, training sessions, awareness campaigns, challenges, policy reviews, incident response drills, MFA adoption, updates, employee engagement, collaboration, contests, feedback channels, awareness videos, and the provision of cyber security resources.

Absolutely. We customize the training courses and content to align with your organization’s security policies, compliance targets, data privacy laws, and brand tone. This ensures higher employee engagement and effectiveness.

Our service includes a variety of engaging Gamified Courses, Culture Surveys, Behaviour Assessments, Security Awareness Nuggets, and Anti-Phishing Training. These are hosted on a dedicated, secure learning platform and are designed to cater to diverse learning preferences.

Yes, we provide a Dedicated Client Manager and a responsive Support Desk to assist with course launch, reminders, troubleshooting, and any other support needed to achieve your cyber security training goals.

Yes, we provide a complimentary 30-minute free consultation service to help you explore and understand the offerings of our Cyber Security Awareness Training services.

The Health Insurance Portability and Accountability Act (HIPAA) of 1996 is a federal law in the United States established to protect patient health information from being disclosed without the patient’s consent or knowledge. It sets national standards for the protection of individually identifiable health information, ensuring the privacy and security of patient data.

Protected Health Information (PHI) under HIPAA includes any information in a medical record or other health information that can be used to identify an individual and that was created, received, maintained, or transmitted by a covered entity or business associate in the provision of healthcare, payment for healthcare services, or healthcare operations. PHI includes any form or medium, including oral, written, and electronic information.

The main components of HIPAA are the Privacy Rule, the Security Rule, and the Breach Notification Rule. The Privacy Rule protects the privacy of individually identifiable health information, the Security Rule sets standards for securing electronic-Protected Health Information (ePHI), and the Breach Notification Rule requires covered entities and business associates to notify affected individuals, the Department of Health and Human Services (HHS), and in some cases, the media of a breach of unsecured PHI.

HIPAA security awareness training is required for all members of a covered entity’s workforce, including employees, volunteers, trainees, and other persons whose conduct, in the performance of work, is under the entity’s direct control, whether or not the covered entity pays them. Business associates are also required to train their workforce members who handle PHI.

The Privacy Officer is responsible for developing and implementing the policies and procedures required by the HIPAA Privacy Rule within a covered entity or business associate. This includes ensuring compliance with privacy practices, conducting training, managing access to PHI, addressing privacy complaints, and providing guidance on privacy regulations and requirements.

The minimum necessary standard is a principle under the HIPAA Privacy Rule that requires covered entities and business associates to take reasonable steps to limit the use, disclosure, and requests for PHI to the minimum necessary to accomplish the intended purpose. This standard applies to all uses and disclosures of PHI, except for disclosures to healthcare providers for treatment purposes.

A HIPAA incident response plan is crucial for promptly and effectively responding to security incidents and PHI breaches. The plan helps minimize the impact of breaches by outlining procedures for investigation, notification, and mitigation, thereby ensuring compliance with the Breach Notification Rule and reducing potential harm to affected individuals.

Vendor management is critical in HIPAA compliance because covered entities often share PHI with vendors, known as business associates, who perform services on their behalf. Effective vendor management ensures that business associates comply with HIPAA requirements through Business Associate Agreements (BAAs), protecting the security and privacy of shared PHI.

Entities that need to comply with HIPAA include covered entities (health plans, healthcare clearinghouses, and healthcare providers who transmit health information in electronic form) and business associates (persons or entities that perform certain functions or activities that involve the use or disclosure of PHI on behalf of or provides services to, a covered entity).

HIPAA was passed by the United States Congress and signed into law by President Bill Clinton on August 21, 1996.

Employee training ensures the workforce understands their responsibilities regarding protecting sensitive patient information and compliance with HIPAA regulations. Training reduces the risk of accidental HIPAA violations and enhances defenses against cyberattacks by teaching employees how to recognize and respond to threats like phishing emails. Regular, comprehensive training fosters a culture of security and privacy within healthcare organizations, directly impacting patient trust and effectively protecting health information.

Cyber Security is a critical component of HIPAA compliance, aimed at protecting electronic protected health information (ePHI) from unauthorized access, breaches, and other cyber threats. The HIPAA Security Rule mandates explicitly covered entities to implement technical, physical, and administrative safeguards to secure ePHI. These measures are vital for maintaining patient information’s confidentiality, integrity, and availability, ensuring patient privacy, and preventing data breaches, which can have severe consequences for healthcare providers and patients.

Standard cyber security measures for HIPAA compliance include implementing strong access controls, conducting regular security risk assessments, encrypting ePHI in transit and at rest, ensuring secure communication channels, and employing intrusion detection systems. Additional measures involve training employees in security awareness, establishing clear policies for mobile device management, and creating an effective incident response plan to address potential breaches promptly.

Cyber Security policies and procedures should be reviewed regularly to ensure ongoing HIPAA compliance. While HIPAA does not prescribe a specific frequency, best practices suggest conducting these reviews annually or whenever significant changes in the IT environment, operations, or known security threats occur. Regular reviews help healthcare organizations adapt to new cyber security challenges and maintain the effectiveness of their security measures.

Risk assessments should be conducted regularly to comply with HIPAA standards, ideally annually or as significant changes occur that could affect the security of electronic Protected Health Information (ePHI). These assessments are crucial for identifying vulnerabilities and threats to ePHI, ensuring appropriate safeguards, and maintaining compliance with the HIPAA Security Rule. Frequent assessments allow for timely updates to security measures in response to evolving cyber threats.

Information security is the practice of protecting information by mitigating information risks. It includes procedures or measures to protect electronic data from unauthorized access, use, disclosure, disruption, modification, inspection, recording, or destruction. It ensures data confidentiality, integrity, and availability, protecting it from cybercrime, breaches, and insider threats. This, in turn, helps maintain the trust of stakeholders, protects privacy, and ensures the smooth operation of businesses and services.

Data privacy focuses on the use and governance of personal data, including policies, legal compliance, and public expectation of privacy. It’s about ensuring personal information is used appropriately, lawfully, and with consent. On the other hand, information security is broader and includes protecting information from unauthorized access to ensure its confidentiality, integrity, and availability, regardless of whether the information is personal.

The key principles of data protection typically include lawfulness, fairness, and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality (security); and accountability. These principles are designed to ensure that personal data is processed safely, legally, and only for the purposes for which it was collected.

Organizations ensure compliance by implementing comprehensive data protection policies, regularly training employees on data privacy, conducting audits to ensure adherence to legal requirements, appointing Data Protection Officers (DPOs) where necessary, and implementing technical and organizational measures to protect personal data, such as encryption, access controls, and data minimization techniques.

Remote work can increase information security and data privacy risks due to less secure home networks, using personal devices for work, and increased opportunities for data breaches. Organizations must adapt by implementing secure remote access tools, training employees on security best practices for remote work, and ensuring that data protection policies are updated to cover remote work scenarios.

Information security and data privacy awareness play a crucial role in protecting customer data by equipping employees with the knowledge to recognize and avoid potential threats, ensuring adherence to security protocols and regulatory compliance. This collective vigilance helps prevent breaches, safeguarding customer trust and the organization’s reputation.

Best practices include encrypting data at rest and in transit, implementing access controls to limit who can view sensitive data, regularly backing up data, conducting regular security audits, ensuring compliance with relevant data protection laws, and using secure, compliant data storage solutions.

A DPO oversees data protection strategy and implementation to ensure compliance with data protection laws. They act as a point of contact for data subjects and regulatory bodies, monitor compliance, conduct assessments, and advise and train employees on data protection matters.

Ethical considerations include ensuring informed consent for data collection and use, respecting user preferences and rights, transparency about data use, fairness in data processing, protecting vulnerable groups, and preventing discrimination or harm from data use.

Future trends include the increasing use of AI and machine learning in data protection and threat detection, the growth of privacy-enhancing technologies (PETs), more stringent data protection regulations globally, the rise of quantum computing and its impact on encryption, and the ongoing need to address new and evolving cyber threats.

A lack of cyber risk awareness can increase vulnerabilities, making an organization more susceptible to data breaches, cyber-attacks, and insider threats. This can result in financial losses, reputational damage, legal consequences, and loss of customer trust.

To secure data online, organizations should implement strong cyber security policies, use encryption, secure network connections, regularly update and patch systems, conduct security awareness training, perform regular security audits and assessments, and develop an incident response plan.

Updates often include patches for security vulnerabilities discovered since the last version of the software. By keeping software and systems up to date, organizations and individuals can protect against exploiting these vulnerabilities, reducing the risk of unauthorized access and data breaches.

Employees are often the first line of defense against cyber threats. Awareness and training can help prevent successful phishing attacks, ensure proper data handling, and foster a culture of security within the organization, reducing the risk of data breaches and other security incidents.

Organizations can use regular training sessions, engaging and relatable content, real-life examples, simulations of phishing and other cyber attacks, newsletters, and updates on the latest threats to keep employees informed and vigilant.

The Malaysia Personal Data Protection Act 2010 (PDPA) regulates the processing of personal data in commercial transactions, balancing privacy protection with business needs. It establishes secure and respectful data management guidelines across digital and non-digital formats, boosting e-commerce trust and addressing digital privacy issues.

The Malaysia Personal Data Protection Act (PDPA) applies to any person or organization processing personal data in Malaysia, including those outside Malaysia, if the data concerns residents. It covers commercial use across private and public sectors but excludes federal and state governments.

Under the Malaysia Personal Data Protection Act (PDPA), personal data includes any information related to commercial transactions processed automatically or intended to be part of a filing system, covering any details that could identify an individual. This encompasses sensitive data like health, political opinions, religious beliefs, or criminal records.

To ensure compliance with the Malaysia Personal Data Protection Act (PDPA), organizations must follow principles, including obtaining consent for data processing, informing and offering choice to data subjects, ensuring data is only used for its collected purpose, implementing strong security measures, not retaining data longer than necessary, maintaining data accuracy, and allowing data subjects access to and correction of their data.

To protect personal data under the Malaysia Personal Data Protection Act (PDPA), recommended cyber security measures include strong access controls, encryption for data at rest and in transit, timely system and software updates, regular security assessments and penetration testing, physical security to prevent unauthorized access, and well-developed incident response plans for data breaches.

Non-compliance with the Malaysia Personal Data Protection Act (PDPA) may result in financial penalties, legal actions from affected individuals, reputational damage, and enforcement actions by the Personal Data Protection Commissioner, including orders to halt data processing.

Challenges faced by organizations in complying with the Malaysia Personal Data Protection Act (PDPA) include limited awareness among staff, setting up compliant data management practices, securing personal data, managing consent processes, ensuring third-party processors’ compliance, and navigating international data transfer rules.

The Malaysia Personal Data Protection Act (PDPA) governs digital marketing by requiring organizations to obtain explicit consent for processing personal data and offering a straightforward method for withdrawing consent. It also emphasizes the need to notify individuals about using their data, ensuring transparency in digital marketing practices.

To ensure third-party vendor compliance with the Malaysia Personal Data Protection Act (PDPA), organizations should assess vendors’ data protection practices, include PDPA compliance clauses in contracts, offer PDPA-related training, establish protocols for reporting data breaches, and routinely monitor vendors’ adherence to data protection laws.

Cyber Security awareness training is essential for compliance with the Malaysia Personal Data Protection Act (PDPA), educating employees about their data protection responsibilities, equipping them with the skills to secure personal data, fostering a culture of collective security responsibility, and mitigating data breaches primarily caused by human error.

Operational Technology, OT, involves using hardware and software to manage industrial machinery, primarily focusing on direct interaction with the physical environment. Examples of OT applications include SCADA (Supervisory Control and Data Acquisition), PLCs (Programmable Logic Controllers), Industrial Control Systems (ICSs), etc.

OT is important in industrial settings because it enables precise control and automation of critical processes, ensuring efficiency, safety, reliability, and data-driven decision-making, while reducing costs.

Operational Technology (OT) oversees physical industrial processes, such as manufacturing, energy, and transportation machinery. It aims to improve efficiency, safety, and reliability in these sectors. On the other hand, Information Technology (IT) focuses on digital data processing, storage, and communication. It benefits multiple sectors and improves data management, security, and digital interaction.

The vulnerability of operational technology systems to cyber threats highlights the relationship between OT and cyber security. Safeguarding OT is crucial to ensuring industrial operations’ safety, reliability, and integrity and preventing potential disruptions and financial damages caused by cyberattacks.

Common cyber security risks in operational technology (OT) systems include malware infections, legacy vulnerabilities, network segmentation issues, insider threats, weak authentication, unpatched systems, supply chain vulnerabilities, physical access risks, human errors, monitoring gaps, regulatory compliance challenges, data integrity concerns, and safety risks. These risks highlight the need for comprehensive security measures to protect critical infrastructure.

Malware, ransomware, DDoS attacks, insider threats, and supply chain vulnerabilities are common cyber security threats to OT systems.

A cyber security breach in OT operations can have significant and complex effects, including process disruptions, safety hazards, environmental harm, data issues, financial losses, harm to reputation, and legal consequences.

Strengthening OT cyber security encompasses conducting risk assessments, training employees to recognize threats, and developing skills to bolster workplace security. OT-focused cyber security training equips employees to address cyber security issues, protect vital infrastructure, and cultivate a safer and more resilient work environment.

Being attentive to OT cyber security improves the well-being of both employees and organizations. It enhances employees’ safety, operational stability, and job security while providing skill development and reducing liability. Simultaneously, organizations benefit from competitive advantages, regulatory compliance, and an enhanced market reputation. OT cyber security vigilance contributes to a safer, more resilient, and efficient workplace.

Compliance and regulations significantly impact OT security, requiring strict adherence to specific cyber security standards and practices. To meet these requirements and safeguard critical infrastructure effectively, specialized OT cyber security training is essential.

Common vulnerabilities in OT systems include outdated software, weak authentication, inadequate network segmentation, and susceptibility to insider threats. To effectively address these vulnerabilities, it’s highly recommended to undergo cyber security awareness training to enhance your knowledge and protect critical infrastructure.

If one encounters a cyber security incident, reporting it promptly to the relevant authorities and implementing necessary measures to reduce the associated risk is essential. Enrolling in an OT cyber security course can provide proficiency to respond effectively to such incidents, including timely reporting and mitigation strategies.

Cyber Security measures for OT systems enhance employee safety by preventing accidents and disruptions. Additionally, these measures ensure job security by safeguarding critical infrastructure and maintaining operational continuity.

To identify cyber security issues in OT systems, monitor for abnormal network activity, unauthorized access, system errors, unexpected behavior, unknown devices, unusual data logs, and employee anomalies. Consider enrolling in an OT-focused cyber security course for improved problem recognition and resolution skills.

Common industrial sectors that extensively use OT systems and should prioritize cyber security include manufacturing, energy, transportation, utilities (water, electricity), healthcare (medical devices), and critical infrastructure (e.g., nuclear facilities, dams, etc.) .

Yes, we provide a complimentary 30-minute free consultation service to help you explore and understand the offerings of our Cyber Security Awareness Training services. Schedule a demo here.

Gamified Security Awareness Courses, lasting 30 to 45 minutes, cover various topics, including end-user, compliance, industry, and country-specific security training. These engaging sessions use puzzles, crosswords, drag-and-drop activities, and scenario-based simulations for an interactive learning experience. Explore our courses here.

Security Awareness Nuggets are short, engaging micro-learning videos, infographics, and games that cover a variety of security topics, such as phishing, password management, and social engineering. They are designed to help employees learn and retain important security information in a fun and interactive way. Visit our Security Awareness Nuggets page for more information.

Phishing Assessments are interactive tests designed to replicate real-life phishing scenarios. They test employees’ readiness to recognize and handle phishing attempts, thereby assessing vulnerability levels and informing future training areas to strengthen cyber security defenses. For more information, head to our Phishing Assessments page.

Yes, we have translations available in the following languages: French, Spanish, German, Finnish, Portuguese, Arabic, Vietnamese, Thai, Bahasa Melayu, and Bahasa Indonesia. Additional language translations are available on request.

Yes, with our managed services team’s support, you can add or remove users within the subscription period, providing adaptability to evolving organizational requirements. Note that exceeding the plan’s user limit will incur an extra charge per user.

With the option of ‘preferred region,’ you can choose a specific geographical location for your server and data storage on the AWS (Amazon Web Services) network. If your preferred region is not available, you could choose the next best available option. This ensures compliance with local data protection regulations, optimizes server performance by reducing latency, and provides more direct control over the data security measures in place.

If you cancel your subscription within 30 days of purchase, you will receive a full refund. If you cancel after 30 days, you will receive a prorated refund for the remaining days of your subscription.