OpenAir Mobile Security
Only authorized employees can access OpenAir data using OpenAir Mobile.
-
Mobile services must be enabled for your company's OpenAir account.
-
Account administrators control who can access OpenAir data using the app.
Account administrators control what data you can access and what you can do using OpenAir Mobile:
-
Account administrators control whether you can access the Timesheets module, the Expenses module, or both modules using OpenAir Mobile.
-
Account administrators control whether you can use the app to approve or reject timesheets and expense reports awaiting their approval.
-
The same role permissions, form permissions and rules apply in both OpenAir and OpenAir Mobile.
OpenAir Mobile uses the industry standard OAuth 2.0 authorization framework to access your company's OpenAir data. Employees authorize OpenAir Mobile to access OpenAir data by entering their OpenAir sign-in details or Single Sign-on credentials.
-
Employees can revoke the authorization for the "OpenAir Mobile OAuth2 global application" at any time. See Authorized Applications
-
Account administrators can use web services reports to audit and revoke authorizations. See
The IP Restriction feature in OpenAir may be used to ensure that OpenAir Mobile can only connect or stay connected with your company's OpenAir account if the your device is connected to your company's Wi-Fi network or VPN, for example.
OpenAir uses the industry standard Transport Layer Security (TLS) protocol to encrypt communication between the OpenAir server and the OpenAir Mobile app on your device, and to ensure the security of the data transferred.
OpenAir Mobile stores data locally on your device. Only the data relevant to the authenticated employees timesheets and expenses is stored. The app always encrypts your data with industry standard encryption.