Soft­ware as a Ser­vice (SaaS)

PLANTA Soft­ware as a Cloud Solution

With Soft­ware as a Ser­vice Your Data is Secu­re­ly Stored in the Cloud

You are free to choo­se whe­ther you want to keep your data on your own ser­vers (on-pre­mi­ses) or whe­ther you want to use PLANTA’s cloud solu­ti­on. In its Soft­ware as a Ser­vice (SaaS) model, PLANTA makes the soft­ware available via inter­net (the cloud). No instal­la­ti­on is requi­red, which helps you to save time and resour­ces sin­ce we take care of the hos­ting and admi­nis­tra­ti­on of the sys­tem. Your data is secu­re­ly stored in cer­ti­fied data cen­ters and kept in accordance with hig­hest data pro­tec­tion stan­dards (com­pli­ant with EU GDPR).

  • Save time and resources
  • Soft­ware accor­ding to requirement
  • Cer­ti­fied com­pu­ting cen­ters and hig­hest data pro­tec­tion standards

You want to keep your data on your own premises?

Befo­re the age of cloud tech­no­lo­gy, com­pa­nies used to keep their data on their own pre­mi­ses. PLANTA still offers this solu­ti­on as an alter­na­ti­ve to the SaaS model.

Data pro­tec­tion
  • Soft­ware 100% Made in Germany
  • Data kee­ping in com­pli­ance with GDPR and GFDP (BDSG)
  • Com­pu­ting cen­ter loca­ted in Germany
Data secu­ri­ty
  • Data encryp­ti­on (also for res­t­ing data)
  • Strict SSL authen­ti­ca­ti­on standards
  • Sepa­ra­te sto­rage locations
Cloud saas software as a service
Secu­re cloud solution
  • ISO 27001 cer­ti­fied com­pu­ting centers
  • Up-to-date thread detec­tion processes
  • Secu­re infrastructure

Secu­ri­ty in Archi­tec­tu­re and Ope­ra­ti­on of the SaaS Data

The PLANTA SaaS plat­form is con­ti­nuous­ly moder­ni­zed with respect to its archi­tec­tu­re and ope­ra­ti­on. This includes both the authen­ti­ca­ti­on mecha­nisms and the ope­ra­ting sys­tems and data­ba­ses used. Pro­ces­ses like moni­to­ring, log ana­ly­sis, and thread detec­tion are con­stant­ly updated so that thre­ats and harmful acti­vi­ties can be iden­ti­fied in good time.

Data Back­up

Data back­up pres­ents an important aspect and is car­ri­ed out via Point in Time Reco­very and addi­tio­nal peri­odic snapshots of all data. The saving and back­up of live data is also effec­ted in accordance with the most secu­re data encryp­ti­on pro­ce­du­res like the encryp­ti­on at rest prin­ci­ple. In this pro­ce­du­re, res­t­ing data is encrypt­ed as well. Back­ups are stored at seve­ral loca­ti­ons off-site and can addi­tio­nal­ly be trans­fer­red to the cus­to­mer via VPN if desired.


Here you will find ans­wers to fre­quent­ly asked ques­ti­ons con­cer­ning data kee­ping in the con­text of the Soft­ware as a Ser­vice method.

In our blog artic­le you will find fur­ther infor­ma­ti­on on: defi­ni­ti­ons, cla­ri­fi­ca­ti­on of com­mon mis­con­cep­ti­ons, etc.

  • What advan­ta­ges come with SaaS?
  • Is it safe to have my data stored in the cloud?

    Yes, all data stored remains encrypt­ed at any time (encryp­ti­on at rest). PLANTA gua­ran­tees hig­hest data pro­tec­tion stan­dards and uses cer­ti­fied ser­vers and data encryp­ti­on as well as the hig­hest SSL stan­dards. Com­pa­nies with par­ti­cu­lar­ly high data pro­tec­tion requi­re­ments may also look into data kee­ping on their own busi­ness pre­mi­ses (on-pre­mi­ses).

  • What data back­up con­cept does PLANTA rely on?

    All data in the data­ba­se is peri­odi­cal­ly saved via snapshot pro­ce­du­re. Not­wi­th­stan­ding this, a point-in-time reco­very of the data­ba­se remains pos­si­ble. The dura­ti­on of the default reten­ti­on poli­cy appli­ed here amounts to seve­ral days. 

    In addi­ti­on to the men­tio­ned pro­ce­du­res, data­ba­se exports are crea­ted on a regu­lar basis. Data can be res­to­red up to 10 years in the past. The com­ple­te data back­up inclu­ding point-in-time reco­very is stored in mul­ti­ple sepa­ra­te com­pu­ting cen­ters. All descri­bed pro­ce­du­res are car­ri­ed out for all envi­ron­ments (deve­lo­p­ment, test, production). 

  • Who owns the data stored in the cloud?

    PLANTA pro­vi­des a secu­re infra­struc­tu­re and the soft­ware. Data sove­reig­n­ty always remains with the user.

  • Is the SaaS appli­ca­ti­on acces­si­ble via public Internet?

    Not neces­s­a­ri­ly sin­ce you can alter­na­tively estab­lish a con­nec­tion to the ser­vices pro­vi­ded by PLANTA via VPN con­nec­tion

  • What authen­ti­ca­ti­on opti­ons are there?
    • Pass­word

    • Ope­nID Connect

    • SAML

    This allows you to con­nect an exis­ting authen­ti­ca­ti­on mecha­nism. Sin­gle sign-on is also possible.

  • What is the gua­ran­teed availability?

    The avai­la­bi­li­ty set out in the stan­dard con­tract amounts to at least 98%. The actu­al avai­la­bi­li­ty, howe­ver, is signi­fi­cant­ly hig­her..

  • What hap­pens to my data once the licence agree­ment expires?

    We will dele­te your data and can make it available to you in a stan­dar­di­zed for­mat (e.g. XML, data­ba­se export) upon request.

  • Does the con­tract take the EU stan­dard clau­ses for data protection?

    Yes, the Stan­dard Con­trac­tu­al Clau­ses (SCCs) as adopted by the Euro­pean Com­mis­si­on in June 2021 are included. When you app­ly the soft­ware as a ser­vice method (SaaS), no cus­to­mer data will be trans­fer­red to any third coun­try out­side the EEA. The ser­vice stores and pro­ces­ses all data within the EEA. The loca­ti­on of the com­pu­ting cen­ter is Frank­furt am Main (Ger­ma­ny).

  • Can we con­sult the TOMs of the hos­ting provider?

    Yes, of cour­se we will make the TOMS available to you. Fur­ther­mo­re, you will be able to con­sult various cer­ti­fi­ca­tes: SOC 1, 2, 3; ISO/IEC 27001:2013, ISO/IEC 27017:2015, ISO/IEC 27018:2019.

  • Is it pos­si­ble to run the soft­ware as an on-pre­mi­ses system?

    Yes, on-pre­mi­ses data kee­ping and licen­se purcha­se have always been pos­si­ble as alter­na­ti­ves to the SaaS model. For fur­ther infor­ma­ti­on on this sub­ject, plea­se click here.

You have fur­ther ques­ti­ons con­cer­ning the PLANTA software?

Con­sul­ta­ti­on Appointments

Book your con­sul­ta­ti­on appoint­ment here