About Ideagen Policy Logic

Ideagen help the safe hands that protect organisations to minimise risk, strengthen compliance and keep people safe.

Ideagen Policy Logic is Ideagen’s SaaS enabled solution helping organisations in highly regulated industries in Australia to meet their governance, risk, compliance, and policy management obligations. Our cost effective, technology-enabled solutions combined with our skills in organisational content integration, enables GRC to come to life in your organisation.

Key Features

Domiciled in Australia: Ideagen Policy Logic services are hosted in Australia on Amazon Web Services’ scalable, fault-tolerant infrastructure.

Enforced User Authentication: Access to Ideagen Policy Logic services is secure, individual user logins allow the site to authenticate and log their activity on the site.

Single Sign On: User Authentication control can be further enhanced through Single Sign On via standards such as SAML and OAuth.

Easy to use Interfaces: Ideagen Policy Logic’s web interfaces are simple and intuitive to use, requiring only basic computer skills. Administrators will be provided with administrator training and require no previous specialised experience.

Policy Connect Platform

PolicyConnect is built on the Content Engine web content management system, which is provided and supported by Ideagen Policy Logic. The platform is accessed securely via SSO protocols, and is W3C, HTML and CSS web standards compliant.

Assurance Platform

Assurance is a fully featured, full-stack enterprise risk management platform, provided and supported by Ideagen Policy Logic. It consists of the web application itself and a separate REST API. The platform is accessed securely via username/password or SSO protocols, and is W3C, HTML and CSS web standards compliant.

CompliLearn Platform

The Ideagen Policy Logic staff learning system (CompliLearn) is provided by GO1. GO1 is an Australian company that provides an intuitive, web-based learning and development platform. GO1 is SCORM-compatible.

Safe Excursions Platform

Safe Excursions is built around the PlanCheckGo and SafeTripBuilder products, both of which are provided and supported by Ideagen Policy Logic. The platform is accessed securely via SSO protocols, and is W3C, HTML and CSS web standards compliant.

Ideagen Policy Logic Security & Accreditations

Ideagen Policy Logic has Australian Federal Government accreditation.

Data Security: Data is partitioned by client with strict database access policies

Role-Based Security: Ideagen Policy Logic’s role-based security policies enforce user actions based on their credentials.

Data Encryption: All data is encrypted by TLS 1.3 in transit and AES256 at rest.

Backup & Retention: Backups are archived daily to Amazon S3 Simple Storage and retained for a minimum of 30 days. Disaster Recovery processes are regularly tested.

ISO 27001: In line with our parent company Ideagen, Ideagen Policy Logic now has full ISO 27001 certification.

Penetration Testing: All Ideagen Policy Logic applications are regularly penetration-tested, by external agencies and/or Ideagen’s inhouse Cyber-Security Division.

Hosting Platform

Ideagen Policy Logic PolicyConnect, Assurance, Safe Excursions and CompliLearn are hosted with Amazon Web Services LLC (AWS), an Amazon.com company. We use the Amazon Elastic Compute Cloud (EC2) service, S3 Simple Storage Service and RDS (Relational Database) Service.

AWS Security & Accreditations

Certifications and Accreditations: AWS has achieved ISO 27001 certification and has been validated as a Level 1 service provider under the Payment Card Industry (PCI) Data Security Standard (DSS). AWS undergo annual SOC 1 audits and have been successfully evaluated at the Moderate level for Federal government systems as well as DIACAP Level 2 for DoD systems.

Each certification means that an auditor has verified that specific security controls are in place and operating as intended.

EC2 Security: Security in EC2 ensures that data cannot be intercepted by non-authorized systems or users. The environment that instances are hosted are completely controlled by Ideagen Policy Logic. Our administrators have full administrative control via strong SSH keys. AWS administrators do not have access and cannot login to our environment.

Physical Security: AWS data centres are housed in nondescript facilities that have extensive setback and military grade perimeter control. Physical access is strictly controlled by professional security staff utilising video surveillance, state of the art intrusion detection systems, and other electronic means. Authorised staff must pass two-factor authentication no fewer than three times to access data centre floors.