ISO 9001 & ISO 27001

TIME TRACKING
LEGAL AND SECURE.

Time tracking software developed under ISO 9001 (quality) and ISO 27001 (information security), certified by Bureau Veritas. Digital clocking that complies with labour regulations and protects your company's and employees' data.

Certifications

ISO certifications for time tracking software

workspace_premium

ISO 9001

Quality Management System

The ISO 9001 standard ensures that our software development processes follow a rigorous and audited quality management system. This means:

  • check_circle Documented and repeatable development processes
  • check_circle Continuous improvement based on metrics and periodic reviews
  • check_circle Quality control at every stage of the software lifecycle
  • check_circle Annual external audits by Bureau Veritas
  • check_circle Structured incident management and customer feedback

Certification obtained in 2018 and periodically renewed.

security

ISO 27001

Information Security Management System

The ISO 27001 standard certifies that we manage information security systematically, covering people, processes and technology. This means:

  • check_circle Documented risk analysis and treatment plan
  • check_circle Access controls and data encryption at rest and in transit
  • check_circle Confidentiality policies for the entire team
  • check_circle Business continuity and disaster recovery plan
  • check_circle Annual external audits by Bureau Veritas

Certification obtained in 2024. Covers telecommunications services, installation/maintenance and software engineering.

In practice

Time tracking and digital clocking security

enhanced_encryption

SHA-256 digital signature

Each clock-in is digitally signed. Any alteration of the record would be immediately detected when verifying the signature.

history

Immutable records

Clock-in corrections never overwrite the original record. Both are retained with full traceability of authorship and date.

lock

Data encryption

Communications encrypted with HTTPS/TLS. Backups with password encryption and automatic integrity verification.

admin_panel_settings

Role-based access control

Three permission levels (employee, coordinator, manager). API keys with granular per-resource permissions. Configurable individual access.

backup

Backups

Automatic backups (daily, weekly, fortnightly, monthly). Encrypted, verified and restorable with double security confirmation.

fact_check

Approval workflow

Corrections can require approval from a supervisor. Record of who approved or rejected, with reason and employee notification.

nfc

RFID, NFC & 2FA

Compatible with RFID and NFC card clocking systems. Two-factor authentication (2FA) for maximum security when accessing the platform.

save

Minimum 4-year retention

Records are retained for a minimum of 4 years, as required by regulations. Accessible at all times to the employee, legal representatives and the ITSS (Labour Inspection).

hub

Secure integrations

Compatible with telephone switchboards, messaging systems (Zulip), Dolibarr, Webhooks and REST API with granular permission keys. WhatsApp and Telegram coming soon.

Labour regulations

Time tracking adapted to Spanish regulations

Art. 34.9 of the Estatuto de los Trabajadores (Workers' Statute)

The obligation to record working hours already exists in current legislation. ARJ complies with all the requirements of article 34.9: daily recording of each employee's working hours, including start and end times, accessible to the employee, legal representatives and the ITSS (Inspección de Trabajo - Labour Inspection).

verified Full compliance

Draft Real Decreto (Royal Decree) on Time Tracking

The new draft Real Decreto (Royal Decree) significantly raises the requirements: mandatory digital recording, detailed minimum content (exact start/end time of the working day and each break, on-site/remote work mode, daily and monthly totals), traceability, immediate employee access and remote access by the ITSS (Labour Inspection).

check_circle Digital recording with exact hour and minute
check_circle Start and end of each unpaid break
check_circle On-site or remote work mode
check_circle Traceability and integrity (SHA-256)
check_circle Corrections with authorisation and authorship record
check_circle Immediate employee access to their records
check_circle Daily and monthly totals
schedule ITSS (Labour Inspection) remote access Coming soon
schedule Overtime with compensation Coming soon
schedule Time record summary alongside payslip Coming soon
schedule Internal time tracking protocol Coming soon
schedule Periodic system evaluation Coming soon
schedule Subcontractor and external company records Coming soon

ARJ will be fully adapted to the Real Decreto (Royal Decree) before it comes into force. The draft provides a 20-day period from its publication in the BOE (Official State Gazette).

GDPR and data protection

Geolocation and clock-in data are personal data protected by the General Data Protection Regulation (GDPR). ARJ implements the principle of data minimisation: geolocation is optional per company, data is stored securely and each employee has full access to their own records.

verified GDPR-compliant design

Certified time tracking software

Working hours recording software developed under ISO 9001 and ISO 27001 by BNT Business Network from the Parque Tecnológico de Andalucía (Andalusia Technology Park), Málaga.

Get started now About Us