Find out how ReSure can streamline your insurance renewal process

Customer Login
ReSure_Logo
Contact Us
ReSure_Logo

Security

How ReSure protects your information and how to report a security concern.

ReSure takes the security of client information seriously.  We apply a combination of people, process, and technical controls to help protect information from misuse, interference, loss, unauthorised access, modification, or disclosure.

Shared responsibility

Security is a shared responsibility between ReSure, our platform provider, and our clients:

  • ReSure manages application configuration, role-based access settings, and client governance guidance for our service.
  • Our platform provider (ibCom’s EntityOS) provides core platform security controls and supporting certification within their Information Security Management System (ISMS).
  • Clients are responsible for administering their own users, access permissions, and the secure use of the platform within their organisation.

Hosting and service providers

ReSure is delivered on the ibCom EntityOS platform and hosted in Australia on Amazon Web Services (AWS).  EntityOS operates under an ISO/IEC 27001-certified information security management system.  We also use reputable third-party service providers to support core business functions (for example, email and collaboration tools).  We take reasonable steps to ensure appropriate protections are in place with our service providers, including security and confidentiality obligations where applicable.

Key security measures

Security measures used within the ReSure service include (as applicable):
  • Encrypted connections (TLS/SSL) for data in transit.
  • Role-based access controls to limit access to authorised users.
  • Audit logging of key user actions to support traceability and monitoring.
  • Multi-factor authentication (MFA/2FA) available for user logons.
  • Operational security controls implemented through the underlying EntityOS platform and AWS hosting environment.

Client guidance

ReSure provides clients with guidance on secure use of the platform, including recommended practices for account management, access controls, and handling exported data (where applicable).

Reporting a security concern

If you believe you have identified a security issue relating to ReSure, please contact us as soon as possible with the details.  Helpful information includes: what you observed, when it occurred, the affected organisation or account (if known), and any screenshots or error messages.
 
(Please include “SECURITY” in the subject line.)