TimeTrex handles payroll and attendance data, so secure deployment and backup consistency are critical. Harden TLS, limit exposed ports, and keep storage/database backups synchronized.
- Expose only HTTPS (443) externally and block direct DB access.
- Use strong TLS certificates and rotate on schedule.
- Restrict admin access to trusted network ranges or VPN.
- Separate application, database, and backup tiers where possible.
¶ 2) Protect payroll and attendance data lifecycle
- Encrypt backups and synchronize storage backups with DB dumps.
- Apply strict filesystem permissions to uploaded document paths.
- Verify restore procedures for both DB and file storage.
- Maintain retention policy aligned with payroll/legal requirements.
¶ 3) Maintain patch and runtime hygiene
- Keep OS, PHP, web server, and TimeTrex components updated.
- Monitor authentication and payroll-related admin actions.
- Add brute-force protections (
fail2ban/rate limits) on login endpoints.
- Audit configuration changes in firewall, TLS, and database access controls.
- TimeTrex security white paper: https://www.timetrex.com/resources/security-white-paper
- TimeTrex on-site deployment guidance: https://www.timetrex.com/blog/timetrex-on-site-deployment
- TimeTrex admin guide: https://help.timetrex.com/latest/community/Introduction/Administrator-Guide-Use.htm
Any questions?
Feel free to contact us. Find all contact information on our contact page.