Security

Data and privacy integrity you can trust

Robust. Reliable. Compliant. Certified.

Dazychain matter management software uses the latest technologies to protect your data and comply with government and industry regulations. Dazychain holds industry-leading certifications and has earned the trust of countless in-house legal teams.

Dazychain Capterra Rating

Regulations and certifications

In a sector built on trust and confidentiality, ensuring Dazychain complies with legal regulations and certifications is not just a checkbox. Adherence to regulations and maintaining certifications and adhering to privacy regulations is a top priority for the Dazychain team.

Employee security

Data security you can count on

All staff undertake police checks before they join the organization and again once every two years. Confidentiality agreements are signed by all employees, third parties and contractors.

During orientation, employees are briefed in detail on the organization’s Information Security Management System policies. The policies are updated frequently, shared with employees and acceptance is documented. Training occurs each year.

  • Our MongoDB cross-platform document-oriented database program is fortified with AES-256 encryption at rest, encompassing all documents and critical information. We retain encrypted data backups
  • Transmissions between our application and the database are shielded by cutting-edge encryption protocols. We employ HTTPS in conjunction with the TLS 1.3 protocol to secure data in transit
  • Dazychain uses cloud services to host our databases and application servers Application data is hosted in Amazon data centres in Australia and the USA, while the database is hosted by cloud provider Object Rocket, also in Australia and the USA. The database is encrypted at rest and all communications between the application and the database are encrypted via SSL
  • A key feature of Dazychain’s legal document management is that documents are encrypted in transit and at rest, and stored in the Amazon S3 file system in Amazon data centers in Australia and the USA
  • Regular security audits and updates ensure that our cloud environment remains impervious to digital threats
  • Segregation of the data is fully supported, tenant aware and no user company can securely access another’s information unless permission has been provided, such as in the case of collaboration
  • The cloud providers hosting our databases and file systems make regular nightly backups
  • Every access to Dazychain, along with any modifications made to legal documents, matters and deliverables, are meticulously logged and preserved
  • The audit trail is a safeguard against unauthorized or malicious activities, enabling fast responses to suspicious behavior

Application server and network protection

Vulnerability protection and monitoring

Dazychain runs on AWS, leveraging multi-availability zones for high availability and redundancy. With state-of-the-art tools like AWS Shield and Amazon Guard Duty, we monitor and protect against vulnerabilities and threats, ensuring your legal management software remains available around the clock.

  • Our application stack runs on AWS, fully utilising the multi-availability zones for High Availability and redundancy. The application sits behind Elastic Load Balancers
  • The application is tightly controlled during high-load scenarios, with new instances created as required to combat the load
  • We utilise AWS Shield, Amazon Inspector, Amazon Cloudfront, Amazon Guard Duty and AWS’s Web Application Firewall to monitor, identify and log vulnerabilities for remediation
  • Dazychain employs AWS Shield to combat denial-of-service attacks
  • Dazychain legal management software uses AWS AMI which is patched regularly against malware attacks. We also use Amazon CloudFront to protect against DDoS attacks
  • Yarris turns on S3 scanning by a third-party virus scanner before project commencement
  • We are automatically covered with standard AWS Shield. We have active monitoring in place from AWS – Network Flow Monitoring. As part of the AWS Shield standard, we are also protected against any DDoS attacks
  • Penetration testing is conducted internally prior to each release of Dazychain to enable your team to identify and mitigate potential cybersecurity threats before release
  • Penetration tests are performed annually and managed by a third party, external agency
  • Yarris makes full use of AWS multi-availability zones, which act as our Disaster Recovery and High Availability
  • Our providers implement Disaster Recovery plans on behalf of hosted services such as ours
  • We also have a fully developed Disaster Recovery and Business Continuity Program
  • AWS meets applicable certifications, including ISO27001, ISO27018, FedRAMP, SOC 1, SOC 2, for more information please see: https://aws.amazon.com/compliance/
Dazychain Certifications

ISO 27001

Our ISO 27001:2013 controls and wider Information Security Management System (ISMS) is internally and externally audited annually.

AICPA Compliance

SOC 2

SOC 2 internal and external audits are undertaken annually and we produce SOC 2 reports demonstrating our strong security and data protection practices.

Privacy Act compliance

We comply with the Privacy Act 1988 (Privacy Act) and related Australian privacy and data laws.

Dazychain is also GDPR compliant. We collect and maintain a very limited amount of personal data, none of which is monetized.

We don’t share data with third parties. Users may choose to share information with external lawyers if they wish.

Upon account termination, we retain customer data for the period requested by the customer, usually one month. After that time period, it is deleted. Alternative arrangements can be made on an ad hoc basis if requested by the customer.

Dazychain secure legal software for in-house teams

The matter-related data, documents and details you store are some of the most important assets in your business. Confidence in the security features of the case management software you use is a critical aspect of your organization’s risk management protocols.

Dazychain improves efficiency, supports compliance, streamlines workflows, supercharges integration and generates exceptional reports. It’s also an important tool in your legal suite that delivers peace of mind that the information you collect and store is protected against evolving threats.

See Dazychain in action

With Dazychain’s innovative platform you can…

  • Showcase your strategic value

  • Track, measure, and present every legal decision, regardless of its size

  • Highlight your invaluable contribution to the company’s growth and direction

  • Elevate your role with Dazychain as the spotlight that underscores your strategic prowess