Frequently asked questions

The essentials for evaluating SECANDA: platform, pricing, security, integration and deployment.

The Solution

Are the SECANDA modules separate installations or a single platform?

A single unified installation. Secure, Pay, Access and Connect are functional groupings that clarify what the platform does, not separate products. In practice: one database, one Command Center, one administration console. You enable capabilities as needed, with no complex inter-module integration to handle.

Learn more: SECANDA Suite →

What sets Polyright apart from other solutions on the market?

Four main differences:

  • Zero transaction fees on closed-loop payments, while most solutions charge 2-3%
  • No double licensing between physical card and mobile credential: it is the same identity
  • Open architecture: on-premise deployment available, sovereign data hosting in Switzerland, integration with existing systems without lock-in
  • 35+ years of experience in Switzerland with a strong presence in higher education

Learn more: SECANDA Suite →

What is the minimum organization size for Polyright to make sense?

From a few dozen to more than 50,000 active users in production today. The platform scales without architectural changes, and the installation remains the same regardless of volume. You can start small and grow without replatforming.

Does Polyright work outside Switzerland?

Yes. We equip more than 500 institutions, primarily in Switzerland but also internationally. The platform natively supports French, German and English, multiple currencies, and various VAT regimes. Support is provided in French, German and English.

Pricing & Commitment

How are we billed? Are there fees per card, per mobile credential, or per transaction?

Polyright operates on a single annual license, sized by the number of users managed on the platform.

  • No extra cost per physical card issued
  • No fee per mobile credential activated
  • Zero transaction fees on closed-loop payments
  • A user with card + mobile + QR code is counted only once

The annual license includes updates and support, no separate maintenance contract.

Learn more: SECANDA Pay →

What happens if we decide to terminate the contract later?

Your data belongs to you and remains exportable at any time via SECANDA Connect (REST API, CSV/XML exports). RFID cards continue to work with any other MIFARE/LEGIC-compatible system. We provide assistance with outbound migration if needed. No technological or contractual lock-in.

Cards, Access & Identity

Can we keep our existing RFID cards, readers and access control systems?

Yes in the vast majority of cases.

  • Cards: MIFARE DESFire, MIFARE Classic and LEGIC are all supported, including multi-technology hybrid cards
  • Readers: Elatec TWN4 is recommended but other models are supported via SDK
  • Access systems: SECANDA orchestrates SALTO, GANTNER, Dormakaba, Allegion, Siemens and others, rather than replacing them

Migration can be gradual, with old and new technologies coexisting.

Learn more: SECANDA Access →

Physical card or mobile: which to choose, and what happens if one is lost?

Both coexist: most of our customers deploy a hybrid model, card or mobile, at the user's choice. The SECANDA App does everything a card does (identification, payment, access), while the card stays useful without a smartphone, for visitors, or in environments where phones are not allowed.

Because nothing is stored on the card (balance, rights and history all stay online in SECANDA), you simply revoke the credential instantly and link a new one to the same account, with nothing lost.

Learn more: RFID cards →

How do you handle visitors and temporary access?

SECANDA Access includes full visitor management:

  • Pre-registration with host assignment
  • Temporary credentials (card or mobile) with automatic validity (start/end dates, time windows, allowed zones)
  • Automatic deactivation on expiration
  • Entry tracking and complete audit trail

Ideal for contractors, consultants, occasional visitors and events.

Learn more: SECANDA Access →

Integration, Deployment & Security

Does SECANDA integrate with our ERP, HR or SIS, and does it expose an API?

Yes. SECANDA Connect integrates with the main business platforms: Microsoft Entra ID, LDAP/Active Directory, SAP, Abacus, Evento, Ellucian Banner, Mobatime, and many more. If your system is not listed, a custom connector or a file-based import is available.

For developers, Connect exposes a complete REST API (CRUD operations on all entities) and webhooks for real-time events. Documentation and a test environment are available.

Which authentication mechanisms are available for the admin console and the mobile app?

Single sign-on (SSO) and modern authentication mechanisms:

  • SSO via SAML 2.0 / OpenID Connect
  • Native integration with Microsoft Entra ID, Google Workspace, Shibboleth
  • MFA, passkeys and FIDO2 supported
  • Granular CRUD permissions per entity and per role
  • Complete audit trail, exportable to your SIEM

Learn more: SECANDA Secure →

Cloud, on-premise or hybrid? And how are updates handled?

Three deployment modes: on-premise (full sovereignty, SQL Server or PostgreSQL), Polyright private cloud hosted in Switzerland, or hybrid. You always retain ownership of your data.

Major updates happen 1-2 times per year, with a planned 30-60 minute window outside critical hours; multi-instance deployments allow version upgrades with no downtime for critical sites.

Learn more: SECANDA Suite →

How are you compliant with GDPR and the Swiss nLPD?

Compliance by design:

  • Granular CRUD permissions per role and per entity
  • Complete audit trail of all actions, exportable to your SIEM
  • Data minimization (the card stores only the strict minimum)
  • Encryption in transit and at rest
  • Swiss hosting available

Compliance documentation (records of processing, DPIA) available on request.

Learn more: SECANDA Secure →

Still have questions?

Our team is ready to help. Schedule a demo to see SECANDA in action and get answers to all your questions.

Request a demo