Our Commitment to Data Security

Our Commitment to Data Security

At TimeKeeping Systems, we understand that security is fundamental to correctional and healthcare operations. Our Guard1 system is built on the principle that protecting data means protecting people. We've designed our solution with security at its core—from SOC 2 Type 2 compliance and FedRAMP-certified hosting to comprehensive encryption to safeguard your data. This is about more than meeting standards; it's about exceeding them to ensure the safety of your facility, your staff, and those in your care.

We believe security extends beyond technology to encompass your entire operation. That's why Guard1 integrates role-based access controls that ensure staff can only access the information they need, real-time monitoring that provides immediate visibility of critical activities, encryption of data at rest and in transit, and robust offline capabilities that maintain operational integrity.

Our 99% uptime SLA, backed by our actual 100% uptime record, demonstrates our commitment to keeping your systems operational when you need them most. You can rely on your Guard1 system, knowing that your digital infrastructure is as reliable and secure as the physical one.

Cloud-Based Solution
Guard1 is available as a secure, cloud-based SaaS solution hosted in Microsoft Azure regional data centers located in the United States, ensuring both compliance with domestic regulations and high availability. Key security features include:

  • Data encryption at rest and in transit
  • FedRAMP High P-ATOs issued by the JAB and 400+ Moderate/High ATOs
  • Hosting in secure Azure data centers for cloud deployments


On-Premise Option

  • Guard1 is also available as an on-premise installation for organizations that require local deployment.
  • We offer optional high reliability, redundant system configurations.


SOC 2 Type 2 Compliance

  • Guard1 has achieved SOC 2 Type 2 compliance certification, verifying that the system meets rigorous standards for security, availability, processing integrity, confidentiality, and privacy.

 

HIPAA

  • Guard1 is HIPAA compliant. In typical use, Guard1 does not store PHI subject to HIPAA regulations.

 

CJIS

  • Guard1 does not store Criminal Justice Information as defined by CJISD-ITS-DOC-08140-5.9.3

 

System Uptime

  • The Guard1 system provides a 99% uptime SLA
  • Current uptime performance record stands at 100%
  • Redundant servers and databases ensure maximum availability

 

Data Security

  • All individual data is fully encrypted both at rest and during transmission
  • Integration with various identity providers, including Azure AD and SAML-based SSO
  • Support for multi-factor authentication when enabled through identity federation

 

Role-Based Access Control (RBAC)

  • Granular access control limits staff to only the data they are permitted to access
  • Permissions can be managed based on a user's assigned role(s) and group membership
  • Integration with Active Directory groups for streamlined permission management

 

Mobile Security

  • Guard1 SuperMAX mobile devices are ultra-rugged, waterproof and purpose-built for harsh or high-abuse environments
  • Devices operate securely offline when connectivity is lost, with automatic synchronization when reconnected
  • Authentication via user credentials or secure login fobs
  • Guard1 SuperMAX mobile devices are managed by TimeKeeping Systems with Mobile Device Management (MDM)
  • Devices are typically configured in kiosk mode, preventing user access to the Internet or other applications
  • Mobile devices cache data when disconnected with visual indicator so officers know this at all times

 

System Integration & Reliability

  • Secure integration with jail management and electronic health record systems
  • 100% success rate integrating with dozens of systems

 

Support & Compliance

  • Technical support available via phone and email during business hours (8 AM to 5 PM EST)
  • 24x7 support is available

 

Data Protection & Privacy

  • Customer data is never shared with third parties

 

Environmental Security

  • Development, Testing, and Production environments available for comprehensive solution deployment
  • Sandbox environment available for testing upgrades with cleansed customer data

 

Authentication & Access

  • Single Sign-On implementation through B2C tenant federation
  • Security protocols for remote support through Bomgar/BeyondTrust

 

Support & Incident Response

  • 90% same-day issue resolution rate
  • A Guard1 Success Manager is assigned to your account for post-implementation support and training

 

Software Management

  • Long product lifecycle -- most versions are maintained for many years to accommodate customer needs and avoid obsolescence
  • Managed update process with customer notification for security patches

 

Compliance & Auditing

  • Third-party audit reporting of Guard1 internal controls for data center security
  • PCI compliance alongside SOC2 Type II for comprehensive security validation

 

Customizable Alerts & Notifications

  • Configurable email and SMS alert notifications by individual, type, and severity
  • Guard1 self-monitors its system health and provides notifications for IT or administrative personnel