Xoxoday stores each client’s data in dedicated, logically isolated database instances secured with client-specific encryption keys, running on Amazon Web Services (AWS) infrastructure.
Logical Data Segregation by Design
Xoxoday’s rewards, incentives, and payouts platform operates on a multi-tenant SaaS architecture that enforces strict logical separation for every client. Each client’s data is isolated using client-specific encryption keys, ensuring that no two organizations can access or interfere with each other’s data. This delivers enterprise-grade security without requiring a separate physical infrastructure footprint per tenant. Rather than relying on shared file systems—which introduce file-level segregation risks—Xoxoday stores client data in dedicated, isolated database instances. Reward transaction records, participant profiles, and payout histories are never co-mingled with another organization’s data at the storage layer.Cloud Infrastructure Powered by AWS
Xoxoday runs on Amazon Web Services (AWS) as its primary public cloud provider. AWS delivers the global coverage, high availability, and elastic scalability required to serve enterprise clients across multiple regions. Whether teams access Xoxoday through integrations with Workday, SAP SuccessFactors, or Darwinbox, the underlying infrastructure maintains consistent performance at scale. All AWS services within Xoxoday’s environment are configured with security controls aligned to ISO 27001 and SOC 2 Type II frameworks. Continuous monitoring, automated threat detection, and compliance-certified tooling are standard operating practice across the entire environment.No Shared File System, No Physical Separation Trade-offs
Xoxoday does not store client data on any shared file system. This design choice eliminates a common class of data leakage risks associated with improper file-level access controls. While per-client physical server separation is not employed, the logical isolation enforced through encryption and dedicated database instances provides equivalent security guarantees for enterprise workloads. For organizations with strict data residency or compliance requirements, Xoxoday’s AWS-based infrastructure supports region-specific deployment configurations to satisfy those policies.A Practical Example
Consider a global enterprise using Xoxoday to manage employee recognition across offices in the US, Europe, and Asia. Each regional entity operates within the same Xoxoday environment, yet their reward data, user records, and transaction histories remain fully isolated behind client-specific encryption keys. HR administrators accessing Xoxoday through an HRIS integration such as SAP SuccessFactors or Darwinbox interact only with data scoped to their own organization—never with data belonging to another client on the platform.Learn more: Xoxoday Help Centre — Data & Policy
How does Xoxoday encrypt data at rest and in transit?
Understand the encryption standards Xoxoday applies to stored data and data moving across its infrastructure.
What compliance certifications does Xoxoday hold?
Review Xoxoday’s ISO 27001, SOC 2 Type II, and other certifications that govern its security posture.