Amazon Web Services (AWS)
Strato is powered by Amazon Web Services (AWS), a leading global cloud platform. As an AWS Qualified Software, Strato has successfully passed AWS’s Foundational Technical Review (FTR), demonstrating adherence to AWS best practices for security, reliability, and operational excellence.
Innovative Ideas
Automatically adapts to handle peaks in document generation and storage.
Global Reach
Choose from multiple AWS regions to meet data residency needs.
Resilience
High availability and disaster recovery built into the platform.
Security
Protection with encryption, identity and access controls, and continuous monitoring.
Innovation
Access to advanced AWS services, including AI and ML, to enhance document processes.
Global Server Locations
Strato runs on secure AWS environments hosted in the United States, Australia, and Germany. To meet customer-specific local data residency and compliance needs, employee documents can also be stored in additional AWS regions worldwide upon request
AI Workload Compatible with SAP BTP
Strato gives customers flexibility in powering AI-driven document processes.
By default, Strato uses built-in AI models hosted on AWS
Customers who prefer to leverage their own SAP BTP AI models can connect Strato seamlessly — ensuring AI workloads run within their existing SAP landscape.
Dedicated Landscape
For organizations with stricter compliance or isolation needs, Strato also offers a dedicated deployment.
Multi-Tenant SAAS
Dedicated Production and UAT environments
Three included instances: DEV, TEST, PRD
Safe setup, thorough testing, and reliable operations
Deployment Options
Strato is delivered as a secure, multi-tenant SaaS platform with built-in Production and UAT environments. This ensures smooth adoption, safe testing, and reliable day-to-day operations.
Security and Cyber Protection
Protecting sensitive employee data is central to Strato’s design. Our security framework combines leading technologies with established practices to help organizations safeguard HR documents.
Encryption Everywhere
All documents and personal data are encrypted both at rest and in transit using industry-standard protocols.
Penetration Testing
Unlike other systems, Strato’s documents don’t require manual editing or completion — they’re generated ready to send or store
Continues Monitoring
Real-time monitoring, logging, and alerting assist in detecting and responding to unusual activity.
Access Control
Identity and access management ensures only authorized users access data, with audit trails for compliance.
Resilience & Recovery
Disaster recovery processes and high-availability architecture reduce risk of downtime or data loss.
Secure Development
Security is built into our software development lifecycle, including code reviews, automated scanning and vulnerability management.
Certifications and Compliance
Strato demonstrates its commitment to security and privacy through independent audits and globally recognized certifications.
ISO 27001:2022 - Information Security Management
valid from May 20, 2025 to May 19, 2028, with annual surveillance audits
GDPR Compliance
Designed to support GDPR and local data residency requirements — Hosting options and data handling practices align with European privacy principles.
AWS Qualified
Strato has successfully passed AWS's Foundational Technical Review (FTR), demonstrating adherence to AWS best practices for security, reliability, and operational excellence.
ISO 27701:2019 - Privacy Information Management
valid from October 28, 2024 to October 28, 2027, with annual surveillance audits
SOC2 - Security, Availability, and Confidentiality
certified November 5, 2024, with annual reviews
What this means for you
Global Standards
Independent validation across security, privacy, and IT operations.
Data Privacy Assurance
Confidence that employee data is managed responsibly and in line with regulatory expectations.
Ongoing Assurance
Regular external audits help maintain strong protections and operational reliability.