Data processing

  1. Data localization
    1. Name of the where data is hosted
    2. Cities in which data and backups are stored
    3. Owners of servers hosting data
    4. Are these servers dedicated to each client?
    5. Describe how physical access to servers is controlled
    6. Describe how logical access to servers is controlled
    7. Countries in which data is processed
  2. Data collection methods
    1. Describe data flows between the agency and our service, and any other data flows and how data is collected.

Name of the where data is hosted

Rackspace and AWS

Cities in which data and backups are stored

  • London, UK
    • For our EMEA customers
  • Dublin, IE
    • For our EMEA customers
  • Sydney, AU
    • For our APAC customers
  • Dubai, UAE
    • For our Middle East customers
  • Texas, USA
    • For our US customers

Owners of servers hosting data

Rackspace and Amazon Web Services.

Are these servers dedicated to each client?

No. We have dedicated Rackspace and AWS cloud servers with all clients using a central portal in each region.

Describe how physical access to servers is controlled

Details to be found here: https://www.rackspace.com/en-gb/compliance/iso 

Describe how logical access to servers is controlled

SSH with keys

Countries in which data is processed

UK and Poland

Describe data flows between the agency and our service, and any other data flows and how data is collected.

Data is submitted via a web portal or via an iOS or Android app and is secured by 128bit encryption. This level of encryption is maintained when the data is sent from the device/desktop/laptop to the servers. The front end portal to view the data also resides behind a 128bit SSL certificate.