Difference between revisions of "Features/Compliance"

From TempusServa wiki
Jump to navigation Jump to search
(Created page with "== Usage == TS NoCode platform is designed to make sure that systems built on can be compliant without any work that needs to be done * Security (ISO27k and ISAE) * EU law (GDPR etc) * Financial regulation == OWASP security == Depending on setup of the server OWASP level 1 or level 2 can be reached. This includes almost all security requirements such as * Mitigation of common threats (SQL injection, CSRF etc.) * Request throttling * Password reset procedures * Logging (...")
 
 
(3 intermediate revisions by the same user not shown)
Line 11: Line 11:
* Password reset procedures
* Password reset procedures
* Logging (see below)
* Logging (see below)
* Multifactor authentication
Read more about it in [[Security_setup]]


== GDPR support ==
== GDPR support ==
Data can be marked up and coupled to autimatic deletion or anonoumization,
Data can be marked up and coupled to autimatic deletion or anonoumization,


== WCAG (disability) ===
== WCAG (disability) ==
The UI supports the guidelines required for screenreaders to work.  
The UI supports the guidelines required for screenreaders to work.
 
Note: It is possible to navigate the UI without using a mouse [[Features/Key_navigation]] {TODO}


== Traceability ==
== Traceability ==

Latest revision as of 14:07, 9 November 2024

Usage

TS NoCode platform is designed to make sure that systems built on can be compliant without any work that needs to be done

  • Security (ISO27k and ISAE)
  • EU law (GDPR etc)
  • Financial regulation

OWASP security

Depending on setup of the server OWASP level 1 or level 2 can be reached. This includes almost all security requirements such as

  • Mitigation of common threats (SQL injection, CSRF etc.)
  • Request throttling
  • Password reset procedures
  • Logging (see below)
  • Multifactor authentication

Read more about it in Security_setup

GDPR support

Data can be marked up and coupled to autimatic deletion or anonoumization,

WCAG (disability)

The UI supports the guidelines required for screenreaders to work.

Note: It is possible to navigate the UI without using a mouse Features/Key_navigation {TODO}

Traceability

Applications can have the following logging

  • Acccess log
  • Action log (events and actions)
  • Revsion log (copy of all changes)

Additionally the user management can provide

  • Login history
  • History of former group membership

Finally all changes to an application are logged centrally