Articles on: Admin

Security and Data Protection in Onos

At Onos, we take the security, privacy, and protection of customer data seriously. The platform is built using modern security practices and hosted within highly secure cloud infrastructure to ensure your data remains protected at all times.


This article outlines the key security measures implemented across the Onos platform, including user permissions, data protection, encryption, and multi-factor authentication (MFA).


User Permissions

Onos provides a fully configurable permissions system that allows administrators to control access across the platform.

Admin users can define granular access levels for:

  • Company-level users
  • Regional teams
  • Project teams

Permissions can be configured for individual modules and features, ensuring users only have access to the information relevant to their role.

Notifications and system access can also be controlled through user role settings.


Data Protection

All Onos data is hosted within Amazon Web Services (AWS) secure cloud infrastructure.

AWS data centres provide enterprise-grade security including:

  • Highly secure hosting environments
  • Redundant power supplies and backup generators
  • Strict access controls to physical infrastructure
  • Continuous monitoring and logging of access

Access to AWS infrastructure requires multi-factor authentication and is fully audited.


Password Protection

Onos protects user credentials using secure password hashing with salt.

This means passwords are never stored in plain text, and the hashing process ensures that stored credentials remain protected even if unauthorised access to the database were attempted.


Encryption of Data

Onos implements encryption for both data at rest and data in transit.

Security measures include:

  • AWS S3 Server-Side Encryption for stored data objects
  • Amazon EC2 EBS encryption for storage volumes
  • HTTPS connections secured using Transport Layer Security (TLS)
  • AES-256 encryption for data in transit
  • RSA encryption used for secure key exchange

These measures ensure that sensitive data remains protected during storage and transmission.


Multi-Factor Authentication (MFA)

Multi-factor authentication is used within the Onos platform to provide an additional layer of account security.

External Users

MFA is currently enabled for all external users, including:

  • Supply chain contacts
  • Third-party users
  • Any non-Onos users accessing the platform

Authentication is completed using a 6-digit verification code sent via email or SMS, which confirms both the user’s identity and the device being used to sign in.


Updated on: 12/03/2026