Security controls your CISO will love
SAML SSO, mandatory MFA, audit logging, geo-fencing, ransomware protection, all on by default, all auditable from one console.
- SAML 2.0 / OIDC SSO with SCIM provisioning
- Mandatory MFA with TOTP, WebAuthn or hardware keys
- Tamper-proof audit log (1 yr retention, exportable)
- Geo-fencing, IP allowlists and ransomware rollback
Two-factor authentication, single sign-on, granular admin roles and full audit logs, security built in, not bolted on.
Passwords alone don't protect business-critical files
Most cloud storage breaches start with a stolen or reused password. Adding 2FA, SSO and audit logging usually means jumping to an enterprise tier that costs three times as much. vBoxxCloud includes 2FA, SAML/OIDC single sign-on, granular admin roles, IP allowlists and a full audit log on every plan, because security shouldn't be a paywall. Security is also about clarity. Admins need to see at a glance who can do what, where strong authentication is enforced, and what changed in the last 90 days. vBoxxCloud surfaces that in a single admin view, instead of scattering it across five sub-tenants and a separate log tool.
How vBoxxCloud security works
Require 2FA workspace-wide (TOTP or hardware key), or federate via SAML 2.0 / OpenID Connect to your existing IdP.
Role-based admin controls let you grant exactly the rights each user needs, workspace admin, billing admin, auditor, or custom roles.
Every login, file action, share event and admin change is logged. Export logs to your SIEM via syslog or REST API.
Security in different contexts
Healthcare and finance teams use SSO, audit log retention up to seven years and IP allowlists for sensitive folders.
FIDO2 hardware keys for admins, TOTP for everyone else, conditional access by IP range.
BIO-aligned controls with role separation between workspace, billing and audit admins.
Security controls
- TOTP and FIDO2 included on every plan
- SAML 2.0 and OpenID Connect SSO
- Session policies, device limits and IP allowlists
- Full audit log with 12-month default retention
- Syslog and REST exports to your SIEM
- ISO 27001, NEN 7510 and BIO certified
vBoxxCloud security vs OneDrive for Business and Dropbox Business
- 2FA, SAML SSO and audit log included on every paid plan
- EU sovereign hosting, no Microsoft, AWS or Google subprocessors
- ISO 27001, NEN 7510 (healthcare) and BIO (Dutch government) certified
- Conditional access requires Microsoft 365 E5
- Subject to US CLOUD Act
- Advanced admin controls only on Enterprise tier
- Uses AWS as backend
Frequently asked questions
Is 2FA included on all plans?+
Yes. TOTP-based 2FA (Google Authenticator, 1Password, Authy) and FIDO2 hardware keys are available on every paid vBoxxCloud plan, including the starter tier.
Which SSO providers are supported?+
Any SAML 2.0 or OpenID Connect identity provider, including Microsoft Entra ID (Azure AD), Okta, Google Workspace, OneLogin, Keycloak and ADFS.
How long are audit logs retained?+
12 months by default. Extended retention up to 7 years is available for regulated industries (healthcare, finance, public sector).
Has vBoxxCloud been independently audited?+
Yes. vBoxxCloud holds ISO 27001 for information security, NEN 7510 for healthcare data, and complies with the Dutch BIO baseline for government suppliers. Audit reports are available under NDA.
Can I enforce 2FA across the whole workspace?+
Yes. Admins can require 2FA at workspace level, with a grace period for existing users, and block sign-ins from devices that do not meet the policy.
Do you support security reviews?+
Yes. We provide a standard security questionnaire, our latest pen-test summary and ISO 27001 statement of applicability under NDA.