WeekdaySign In

Security at WeekdayApp

Your data security is our top priority. We implement industry-leading security measures to protect your practice and client information.

256-bit SSL
AWS Hosted
POPIA Compliant
99.9% Uptime

Our Security Approach

WeekdayApp is built with security at its core. We understand that accounting practices handle sensitive financial and personal information, which is why we've implemented multiple layers of protection to keep your data safe.

Security Features

Encryption

  • TLS 1.3 encryption for data in transit
  • AES-256 encryption for data at rest
  • Secure key management
  • HTTPS enforced everywhere

Authentication

  • Secure session management
  • OAuth 2.0 social login
  • Password hashing (bcrypt)
  • Automatic session expiry

Access Control

  • Role-based access control (RBAC)
  • Row-level security (RLS)
  • Principle of least privilege
  • Activity audit logging

Infrastructure

  • Hosted on AWS
  • DDoS protection
  • Regular security patches
  • Isolated tenant data

Data Protection

Multi-Tenant Isolation

Each organisation's data is completely isolated using database-level row-level security (RLS). Even if there were a bug, the database prevents cross-tenant data access.

Backup & Recovery

Automated daily backups with point-in-time recovery capability. Geo-redundant storage and regular backup testing ensure your data is always safe.

Data Encryption

All data encrypted in transit (TLS 1.3) and at rest (AES-256). Passwords use bcrypt hashing. Additional encryption for tax numbers and financial data.

Hosted on AWS Infrastructure

Our application is hosted on Amazon Web Services (AWS), one of the world's most secure cloud platforms. AWS maintains numerous compliance certifications:

SOC 2ISO 27001PCI DSSGDPR

Network Security

  • Web Application Firewall (WAF) protection
  • DDoS mitigation
  • Rate limiting on all API endpoints
  • IP-based access restrictions (enterprise)

Application Security

  • Regular security code reviews
  • Dependency vulnerability scanning
  • Input validation and sanitisation
  • Protection against OWASP Top 10

Compliance

POPIA Compliant

Full compliance with the Protection of Personal Information Act

Learn more →

SARS Compatible

VAT-compliant invoicing and tax deadline tracking

Data Residency

Data processed in secure, compliant data centres

Monitoring & Incident Response

24/7 Monitoring

Automated systems monitor for suspicious activity

Audit Logging

Comprehensive logging of all system access

Alerting

Immediate alerts for security-relevant events

Incident Response

Documented procedures for handling incidents

Employee Security

Background checks for all employees
Security awareness training
Principle of least privilege access
Secure development practices

Found a Security Vulnerability?

We take security vulnerabilities seriously. If you believe you've found a security issue in our platform, please report it responsibly.

Email: security@theweekdayapp.com

Questions About Security?

If you have questions about our security practices or need more detailed information for your organisation's security review, please contact us.

Security EnquiriesPrivacy & POPIA
Privacy Policy Terms of Service POPIA Compliance

Last updated: 21 February 2026