COMPANY IT SECURITY POLICY
All client data is received or sent via our secure End to End encrypted email software.
Any data files or PDFs returned to clients will also be password protected and the password sent via a separate email.
Only members of the IT department and management have permission to access the client data sent via email.
All PCs that are used to process clients data contain firewalls and are password protected. Once a screen has been inactive for 10 minutes, a password is required to access the PC again. The individual client data folders are also password protected.
If it is necessary to dispose of a PC, the hardware is removed and forensically destroyed.
Client data is never sent to any third party unless specifically instructed by the client.
OFFICE SECURITY
In addition to our data security, we have the following security procedures in place:
All doors and windows are alarmed to NSI standards.
A 5 digit alarm code is fitted to the premises and the code is changed every 2 months.
The office and IT department doors are fitted with separate digital locks with separate 6 digit codes. These codes are changed every 2 weeks.
Only data personnel and management grade personnel are authorised to enter the IT department and office where computers are present.
No client information, either electronic or hard copy leaves our premises at any time with the exception of mailing items containing names and addresses handed over to the Royal Mail or 3rd Party Downstream companies as instructed by the client.
