Encryption, everywhere
Every connection to Oraoki — from the web dashboard, the housekeeper mobile app, and the reception-desk widget — runs over HTTPS with TLS encryption, so information can't be read in transit. Behind the scenes, the connections between our own services (the database and cache) are encrypted too. The data itself is encrypted at rest: the database and every backup are stored encrypted, so a stolen disk or backup file is unreadable. The mobile app goes a step further with certificate pinning, which means it will only ever connect to the real Oraoki and refuses impostors on public Wi-Fi.
Your property's data stays your property's data
Oraoki serves many hostels from one platform, and keeping each one walled off from the others is the single most important thing we do. Every record is tagged with the organisation it belongs to, and the database enforces that boundary itself using row-level security — not just application code that could be bypassed by a bug. On top of that, an automated check runs on every single change to our code and blocks anything that could let one property's data leak into another's. It is defence in depth, by design.
Strong sign-in, sensible access
Passwords are hashed, never stored in plain text. The mobile app uses short-lived access tokens that rotate automatically and are revoked the moment we detect anything suspicious. Repeated failed logins trigger lockouts to slow down guessing attacks, and the app locks itself after a period of inactivity so an unattended phone doesn't expose your floor. Access inside a property is role-based: a housekeeper, an inspector, and a manager each see only what their job needs.
Hosted in Australia, with recovery built in
Oraoki runs on Amazon Web Services in the Sydney region, inside a private network with no part of the database exposed to the public internet. Backups are taken continuously — the database keeps 35 days of point-in-time history — and copies are replicated to a second Australian region (Melbourne) so we can restore service even if an entire region has a bad day. A small number of trusted providers help us run the service: email delivery and our content-delivery/security layer may process limited information (such as an email address or an IP address) outside Australia. The full, current list is in our privacy policy.
Your rights over your data
The information in Oraoki belongs to your property and your team, and you can exercise your rights under the Australian Privacy Principles at any time:
- Access. Staff can export their personal information as a downloadable file from within their account.
- Correction. Details like name, email, and phone can be corrected directly in the app, with the change recorded.
- Deletion. An account can be closed and its personal information erased after a short grace period — some employment and financial records are kept only as long as Australian law requires.
If something ever goes wrong, we have a documented breach-response plan and will notify affected people and the Office of the Australian Information Commissioner where the Notifiable Data Breaches scheme requires it. You can reach us any time with a privacy question through the contact details on our privacy policy.