Security & Trust
This page summarizes the practical security controls and security roadmap used for the RELIEF Module.
Accounts are protected through secure sign-in, email verification, and subscription-based access.
RELIEF transaction data and generated DAT files are not saved on our server.
Administrative tools are limited to authorized S2E users for payment verification and support.
S2E is designed to align with recognized cybersecurity frameworks such as NIST Cybersecurity Framework and ISO/IEC 27001 principles. This is not a certification claim.
How we protect your use of S2E
- Only signed-in users with active access can use the RELIEF workspace.
- Uploaded RELIEF files are processed in your browser for DAT generation without saving taxpayer transaction data on our server.
- Payment confirmation files are used only for subscription verification and support.
- Privacy, service terms, and data processing terms are presented before use.
- System activity may be logged to help investigate support issues and protect accounts.
Cybersecurity framework alignment
S2E uses the NIST Cybersecurity Framework and ISO/IEC 27001 principles as references for its security roadmap, including access control, audit logging, data minimization, incident response, and continuous improvement. S2E does not claim ISO/IEC 27001 certification unless a formal certificate is later obtained.
Customer responsibility
S2E helps prepare and validate RELIEF files, but customers remain responsible for reviewing taxpayer information, TINs, amounts, filing period, and final BIR submission requirements.