Is OpenEvsys secure?
Sensitive data, that must absolutely remain private, should generally not be stored on the web, whether in OpenEvsys or in any other database that is installed on a webserver.
Although OpenEvsys has had a security audit and was subsequently strengthened it against malicious code injections, we still cannot absolutely guarantee that it will not be possible for a malevolent party to hack into OpenEvsys and read your data.
What is the solution? Organisations who use OpenEvsys for sensitive data will usually host it themselves on an offline server that is well protected.