Skip to main content

As a cloud-based technology company, data and privacy is always at the forefront of our minds, and it’s a question that our customers ask almost immediately. We know that there is a huge responsibility that comes with storing and managing employee health data, which is why information security is, and always will be, of the utmost importance to us.

Here at MOHR, we’ve built our systems to be global best practice for the security of our customers’ data. We’re ISO certified for our security systems, our data is stored in a world-class cloud provider – Amazon Web Services – and we use high-level encryption for our data at all times. See the bottom of this post if you want more technical details.

So, when it comes to managing your employee data, it’s important to ask yourself: is the provider you are entrusting your employee data with secure enough? With MOHR as your partner in the system, your data is safe with us.

But it is also important that you consider how secure your own systems are, and whether you are protected against the evolving perils.

In today’s digital world, cyber-attacks have become a key threat to businesses and their employees. With the transition to remote working for a larger proportion of the Australian population, attempted cyber-attacks have been on the rise. In COVID-19 times, new threats have popped up that may create security risks for the employee data that you hold.

A recent report released by Scamwatch has shone a light on the havoc that hackers are currently wreaking. The report outlines that since the beginning of the COVID-19 outbreak, Scamwatch has received over 4700 reports of scammers taking advantage of people across Australia, totalling over $5,480,000 in reported losses. That’s huge!

On the business side, these attacks range from attempts to secure employee login details, to more sophisticated attacks directly on the business themselves. A common strategy has been to masquerade as a government agency that is allegedly offering to provide COVD-related assistance.

Once a hacker gets a hold of your, or your employee’s, personal information, the possibilities for them to take advantage are endless. You need to ensure that you and your employees remain vigilant against the new and escalating risks. Even if your systems are secure, lapses by your employees might open a small risk.

So, do yourself a favour and make sure that your service providers are putting cyber security and customer privacy at the forefront of their business strategy. And make sure that your employees understand the risks and dangers facing them.

We’ll do our part, and you can do yours, and, together, the system remains secure.


Here’s some details about our security systems, for those who enjoy that sort of thing!

My Occ Health Record are ISO 27001 certified. ISO 27001 is a global standard for the quality of our Information Security Management Systems (ISMS) and we are audited against those standards every year. That means that our clients can have full trust and confidence that we are a best practice organisation, and our systems are built at the highest level possible.

Our cloud-based solution is housed by Amazon Web Services (AWS). AWS, as most are aware, are among the Gold Standard providers in the cloud computing space. AWS provide significant security at all levels of the cloud. As for your data in the cloud, it is encrypted both at rest and in transit (a fancy phrase that means that we use encryption even when we are sending data from the app to the cloud, and then once in the cloud it is encrypted again).

Data security and privacy have been built in from the very start of My Occ Health Record. Safely storing employee health data is in our very DNA.