About

Coroni Technology Ltd

Coroni Technology was established in 2004 as a software development and consultancy service by five development specialists seeking to embrace Internet technologies in the field of Human Resource Management. Collectively, the founders bring with them over a century of experience in HR and Payroll software development.

Specialists

Coroni specialises in providing branded software to leading HR and Payroll providers in the UK. Key to the company’s success is the establishment of partnerships with major service providers. Clients include multi-jurisdictional advisory and outsourcing services companies, employee benefits specialists, independent businesses and various Government agencies and departments.

Coroni’s solutions are based around its substantial expertise and knowledge of database and web technology. Since its formation, Coroni has been a member of the Microsoft Partner Program and its developers were the first to deliver HR software using Microsoft’s .NET technology.

VISION

Coroni’s vision is to become the leading supplier of online Human Resource applications and services in the United Kingdom through direct hosting and a network of expert partnerships.

Coroni’s philosophy is to utilise the power of the Internet to bring business advantage to its customers in respect of their Human Resource Management practices.

TEAM

The team at Coroni is the cornerstone of the business. Their contribution and commitment is key to a successful ability to deliver.

Encouragement to create and innovate is complemented by a high degree of team and personal responsibility.

General Data Protection Regulation

In May 2018, a European privacy law, the General Data Protection Regulation (GDPR), took effect. We are committed to GDPR compliance across our Reflex and BizFlakes services.

Our Information Security policy and agreement terms govern our processing and security of personal data, transfers of personal data to third countries, confidentiality requirements for individuals authorised to access personal data, and use of sub-processors. Our hosting sites guarantee their ability to implement the technical and organisational requirements of the GDPR.

Commitment to Security

We are committed to help partners respond to data subjects’ requests to correct, amend, or delete their personal data; delete or return personal data when our provision of services ends; respond to personal data breaches; and demonstrate their compliance with the GDPR.

In addition, we agree to notify partners of any personal data breach after having become aware of it without undue delay. Our hosting services have solutions available to detect and assess security threats and breaches and meet the GDPR’s breach notification obligations.

DATA SECURITY

Data security is managed by the designated Information Security Director and the Development Director who are responsible for our policies and procedures. All policies are reviewed quarterly by the responsible director and annually at a full board meeting.

DATA STORAGE

The data centres we use are selected for their compliance with the highest security standards. For UK customers the data centre is located in the EEA, operates to ISO 27001, HIPAA, FedRAMP, SOC 1, SOC2 and SOC 3 standards. The environment is FIPS140(2) and CESG compatible.

We do not divulge detailed information (e.g. type of servers, name of the intruder protection software etc. as it is confidential). In any case, we reserve the right to amend the environment and equipment at any time, without notice, to counter new threats.

DATA ACCESS

Access to the application is secured through connections encrypted by Transport Layer Security which protects data coming to and from the client and server.

Any administrator/customer/employee user whose browser does not support the correct level of encryption is automatically denied access.

Modern Slavery

We are committed to ensuring, as far as we are able, there is no modern slavery or human trafficking in our supply chains or in any part of our business. Our supply chain includes the sourcing of hardware and hosting services for the production of our software. Partner organisations licence the software to sell as part of a service to end-user customers.

We are committed to acting ethically and with integrity in all our business relationships and to ensuring that there is no modern slavery or human trafficking in our supply chains or in any part of our business. As part of our initiative to identify and mitigate risk:

• we develop all software in-house
• where possible, we build long-standing relationships with partner re-sellers and make clear our expectations of business behaviour
• we have zero tolerance to slavery and human trafficking. We expect all those in our supply chain and contractors comply with our values
• our point contact within the supply chain is preferably with a UK company and we expect these entities to have suitable anti-slavery and human trafficking policies and processes. It is not practical for us to have a direct relationship with all links in the software, hosting and equipment supply chain, but we expect each entity in the supply chain to, at least, adopt due diligence on the next link in the chain