Security & Trust
Your cyber security and request for proposal questions answered
Read this first, it’s important information to consider.
When evaluating visitor management solutions, many organisations require detailed information on data security, compliance, hosting, and privacy practices. At Teamgo, we understand that due diligence is an essential part of your procurement process—especially when completing Request for Proposal (RFP) documents, security assessments, or internal reviews.
To make this easier, we’ve created a comprehensive self-service resource that provides answers to the most commonly requested questions about our platform. This includes detailed information on our security protocols, data handling procedures, compliance with international standards like ISO 27001 and GDPR, and how we host and manage your data securely with Amazon Web Services (AWS) in Australia.
This page is designed to help your team complete its own assessments without requiring our team to manually fill out forms or questionnaires. By using this resource, you can save time, ensure accuracy, and get the information you need—when you need it. If you do have questions or need to verify specific details, we’re always happy to review your documents or clarify anything further.
Your RFP Questions Answered
| Q-ID | Category | Question | Response |
|---|---|---|---|
| Vendor & Company Background | |||
| 1.1 | Company Info | What is the full legal entity name and company registration of the provider? | Teamgo Pty Ltd, registered in Australia with ABN 68 164 411 980. |
| 1.2 | Company Info | Where is the provider headquartered and where are customer support operations based? | Teamgo is headquartered in Adelaide, South Australia. |
| 1.3 | Experience | How long has the provider been offering visitor management systems? | Teamgo has been offering visitor management software as a service since 2013. |
| 1.4 | Customers | Who are some notable government or enterprise customers using the system? | Teamgo serves Australian Federal Government agencies, state departments, healthcare networks, and global corporates. |
| 1.5 | Differentiators | What differentiates Teamgo from competitors in the visitor management space? | Teamgo provides full Australian data residency, privacy controls, ISO-aligned security, a flexible API, and strong local support. |
Security Practices
Teamgo implements layered security controls to protect its platform, users, and customer data. Security measures span infrastructure, network, application, and operational domains.
| Q-ID | Question | Response |
|---|---|---|
| 2.1 | How does Teamgo secure its platform against threats? | Teamgo applies a defense-in-depth model with continuous monitoring, threat detection, and prevention mechanisms across all system layers. |
| 2.2 | Who has access to Teamgo systems and data? | Only authorised personnel with a defined business need have access. Access is controlled by role-based access controls (RBAC), reviewed regularly, and revoked upon employee departure or role change. |
| 2.3 | How is data encrypted by Teamgo? | All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption, including sensitive personal data and visitor logs. |
| 2.4 | What authentication options does Teamgo support? | Teamgo supports two-factor authentication (2FA), SAML 2.0 Single Sign-On (SSO), and advanced password controls for user and administrator accounts. |
Data Privacy and Handling
Teamgo is designed with a privacy-first approach, giving customers full control over their data and ensuring responsible collection, processing, and storage practices.
| Q-ID | Question | Response |
|---|---|---|
| 3.1 | What kind of data does Teamgo collect? | Teamgo only collects the minimum necessary data to deliver and support visitor management services. This may include name, contact details, and check-in activity. |
| 3.2 | Does Teamgo sell or share customer data with third parties? | No. Teamgo does not sell, rent, or share customer or visitor data with third parties for marketing or profiling purposes. |
| 3.3 | Who owns the data collected through Teamgo? | Customers maintain full ownership and control over their data. Teamgo acts as a data processor and only handles data as instructed by the customer. |
| 3.4 | Can customers manage or delete their data? | Yes. Customers can configure data retention rules, export records, and delete data at any time through the admin portal or via automated policies. |
| 3.5 | Does Teamgo use subprocessors? | Yes. Teamgo uses carefully selected subprocessors for infrastructure and service delivery. All subprocessors are vetted, bound by strict agreements, and listed in our public documentation. |
Compliance and Certifications
Teamgo aligns with international standards and frameworks to ensure data protection, information security, and regulatory compliance across jurisdictions.
| Q-ID | Question | Response |
|---|---|---|
| 4.1 | Is Teamgo ISO 27001 certified? | Teamgo operates an ISO 27001-aligned Information Security Management System (ISMS). Certification through an accredited auditor is planned or in progress, with policies and controls already implemented. |
| 4.2 | Is Teamgo compliant with GDPR and Australian privacy laws? | Yes. Teamgo complies with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), and is fully aligned with the EU GDPR. |
| 4.3 | Does Teamgo support SOC 2 compliance? | Teamgo follows SOC 2-aligned internal controls and may provide audit summaries or customer-specific documentation under NDA. |
| 4.4 | Can customers request compliance documents? | Yes. Teamgo provides security documentation, certifications, completed questionnaires, and policy statements upon request. |
Business Continuity and Disaster Recovery
Teamgo maintains robust continuity and recovery capabilities to ensure uninterrupted service availability and rapid recovery from unexpected events.
| Q-ID | Question | Response |
|---|---|---|
| 5.1 | Where is Teamgo hosted and how is uptime ensured? | Teamgo is hosted on Amazon Web Services (AWS) in Australia. We use redundant infrastructure and automated failover to maintain high availability. |
| 5.2 | Does Teamgo have a disaster recovery plan? | Yes. We maintain and test a formal disaster recovery plan annually, ensuring system and data recovery within defined RTO and RPO. |
| 5.3 | How is customer data backed up? | Encrypted backups are performed regularly and stored securely in geographically redundant environments within AWS Australian regions. |
| 5.4 | Is uptime monitored? | Yes. System uptime and key metrics are monitored 24/7 with alerts, incident response playbooks, and service level objectives in place. |
Risk and Incident Management
Teamgo proactively manages security risk through assessments, testing, and a structured incident response process.
| Q-ID | Question | Response |
|---|---|---|
| 6.1 | Does Teamgo perform penetration testing? | Yes. Teamgo engages CREST- or OSCP-qualified third-party security firms for annual penetration tests and conducts continuous internal vulnerability scanning. |
| 6.2 | How does Teamgo handle incidents? | We have a documented and rehearsed incident response plan that ensures swift detection, investigation, and mitigation of security events. |
| 6.3 | Will customers be notified of a data breach? | Yes. In accordance with the Notifiable Data Breaches (NDB) scheme and other laws, Teamgo will notify affected customers within 72 hours of becoming aware of a serious breach. |
| 6.4 | How are risks assessed and tracked? | Teamgo performs formal risk assessments under its ISMS. Risks are scored, reviewed quarterly, and tracked through mitigation workflows aligned with ISO 27005. |
Additional Information for Australian Customers
Teamgo is an Australian-owned and operated company, with a strong focus on local compliance, data sovereignty, and alignment with Australian government cybersecurity guidelines.
| Q-ID | Question | Response |
|---|---|---|
| 7.1 | Is Teamgo an Australian company? | Yes. Teamgo Pty Ltd is headquartered in Adelaide, South Australia. We are a fully Australian-owned company with on-shore support and engineering. |
| 7.2 | Where is customer data stored? | All customer and visitor data is hosted exclusively within Amazon Web Services (AWS) data centres located in Australia. |
| 7.3 | Does Teamgo comply with the Australian Privacy Act? | Yes. Teamgo complies with the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs). |
| 7.4 | Does Teamgo align with the ASD Essential Eight or ISM? | Yes. Teamgo internal controls are aligned with the ASD Essential Eight Maturity Model. We also reference the Australian Government Information Security Manual (ISM) where applicable. |
| 7.5 | Is Teamgo IRAP assessed? | Teamgo is not IRAP-certified, but we can provide relevant documentation and technical controls to assist customers performing IRAP assessments or working within IRAP-compliant environments. |
| 7.6 | Does Teamgo use Australian-based staff for development and support? | Yes. All platform development, infrastructure management, and customer support functions are performed by Teamgo staff based in Australia. |
| 7.7 | How does Teamgo support government or education tenders? | We provide pre-prepared RFP packs, statements of compliance, insurance certificates, accessibility declarations, and data protection summaries upon request to support formal tenders. |
INTEGRITY
Our easy to use, centralised cloud dashboard is designed for administrators and employees alike working across multiple offices and locations. Built for working teams, assign employees to groups with permissions that give them access to the right tools for operating a more efficient workplace.
We store your data on secure cloud servers that can only be accessed by people you specify. Your data is maintained with detailed logs that can be exported with just one click or direct integration to existing systems.
Teamgo is highly sought after for enterprise and government customer or those that require compliance with ISO, SOC, PCI, ITAR, GDPR, and other regulatory frameworks.
Australian Company
Proudly Australian technology company specialising in Visitor Management software and applications.
Amazon Web Services
You expect the best and we rely on the best with cloud hosting and security provided by Amazon AWS Australia.
Fanatical Support
24/7 support available and experienced account managers on standby - we provide hands on customer assistance.
See how Teamgo performs for your workplace
Try our Essential plan FREE for 30 days – no payment or credit card needed.
