We are fully accredited with UKAS approved ISO27001:2013 certification ensuring that we have strict policies, processes and procedures in place for data protection and information system security. We test these policies regularly.
We fully train all employees on data protection when they join the firm and on an ongoing basis.
We have a variety of secure data transfer tools available, including SFTP, PGP, secure Drop Box and encrypted email, all of which retain the optimum level of security. We also have a data destruction procedure in place for digital data, decommissioned servers or hardware, and the secure disposal of printed documents.
Any third party suppliers that we use undergo strict data security due diligence. This includes data security questionnaires, site visits and regular reviews.