TCP privacy and security overview
As a provider of employee scheduling and time and attendance solutions, TCP Software respects the privacy of our clients and others who use our website, mobile applications, products, and services.
In connection with providing our services and operating our business and website, we process certain personal data, including from our clients, prospective clients, and, for certain clients, end-users of our products.
TCP Software’s primary security focus is to safeguard our customers’ and users’ data. This is the reason that TCP has invested in the appropriate resources, controls, and independent oversight to protect and service our customers around the world.
This investment includes the implementation of a dedicated security team. Our security team is responsible for TCP’s comprehensive security and risk management program and governance process.
Start learning about our security strategy by downloading our Security Overview.
Service Organization Control (SOC)
SOC Reports are independent third-party examination reports that demonstrate how TCP Software achieves key compliance controls and objectives. The purpose of these reports is to help you and your auditors understand the TCP controls established to support operations and compliance.
SOC 3 reports
TCP’s Service Organization Controls 3 (SOC 3) reports outline information related to our internal controls for security, availability, processing integrity, and confidentiality.
Reports available by product
Note: We are continuously adding new products and services. If you are interested in a SOC 3 report for a product not listed above, please reach out to your customer success manager or sales representative to determine availability.
SOC 2 reports
TCP’s Service Organization Controls 2 (SOC 2 type II) reports outline information related to our internal controls for security, availability, processing integrity, and confidentiality over a time period.
Reports available by product
TCP is an industry-leading time and attendance and employee scheduling solution provider with numerous core product services. Distribution of any TCP Software SOC 2 report will only be made available to current customers, potential new TCP Software clients, or authorized business partners.
To request a SOC 2 report, please email [email protected]. In your request, please indicate which product you are requesting a report for and the entity you represent.
Note: Sharing of any TCP Software product SOC2 type II report will require a mutual non-disclosure agreement.
Texas Risk and Authorization Management Program (TX-RAMP) Level 2 Certification for TimeClock Plus
The Texas Risk and Authorization Management Program (TX-RAMP) provides a standardized security assessment, certification, and continuous monitoring protocol for cloud service providers. Formalized by Senate Bill 475, TX-RAMP mandates that Texas state agencies can only work with cloud service providers that can successfully pass NIST-based security assessment (NIST 800-53) by the Texas Department of Information Resources. As a certified solution, TimeClock Plus has been vetted and proven to comply with these stringent security measures.
TX-RAMP applies to all state-funded agencies, including state higher education institutions. TimeClock Plus has been certified through January 30, 2027.