data processingOur Data Processors

We aim to be transparent about what we do with data, especially your data.

We use the suppliers below to help us deliver services to our clients. They act as our processors and some of them may process client personal data too. If they do they become sub-processors for our clients. We specify these suppliers when drawing up contracts and agreements and inform our clients of proposed changes.

All of our suppliers are contractually bound to us and act on our instructions. They will not use, share, or retain client personal data for any purposes other than those necessary for the provision of our services.​ In some cases, the data they process is not only encrypted 'in motion', but also 'at rest', making it incomprehensible to them and its disclosure or compromise an impossibility.

Country
(Processing Country)
Nature of Processing Personal Data Types Data Subject Categories Security Notes
 
Apple Inc.
USA (USA) Cloud file storage, address book and calendar Contact details Clients, enquirers, suppliers etc. Encrypted (SSL) connections, passwords and two-factor authentication
BackupMonkey UG (haftungsbeschränkt)
Germany (Germany) Backup and security testing services Contact details, IP addresses Clients and other data subjects supplied by Clients Encrypted (SSL) access and uploads, passwords etc.
British Telecom Group plc
UK (UK) Internet service provision and telephony Automated information such as IP address, operating system, and type of device, timestamps, network traffic. The Supplier only Router protected by password (not default) and firewall
Host Lincoln t/a Jolt
UK (UK) Web hosting and related services Contact details, IP addresses Clients and other data subjects supplied by Clients Website traffic is encrypted via an SSL certificate, access passwords and two-factor authentication for administration
HSBC plc
UK (UK) Banking services Banking and contact details Supplier, Clients and the Supplier's suppliers as payees Encrypted (SSL) connections, passwords and two-factor authentication.
Hush Communications Canada Inc.
Canada (Canada), which has been granted an adequacy decision by the EU Hushmail secure email and file transfer communications Client contact details and any other data supplied by Clients Clients and other data subjects supplied by Clients Encrypted (SSL) connections and the data are separately encrypted with the supplier having no access to the decryption keys
Microsoft Corporation
USA (UK) OneDrive Cloud file storage. As supplied by Clients Clients Encrypted (SSL) connections, passwords and two-factor authentication
QuickFile Ltd
UK (UK) Accounting records Supplier and client contacts/invoicing details Supplier and Clients Encrypted (SSL) connections, passwords and two-factor authentication
Sectigo Inc
USA (USA) Issue of SSL certificated for websites Client account information needed for issuing SSL certificates (usually not personal) Supplier and Clients with websites supported by the Supplier Encrypted (SSL) connections and passwords
Tawk.to Inc.
USA (USA) Website Cloud ‘Chat’ service Automated information such as IP address, operating system, and type of device plus some contact and other information supplied by Clients and enquirers Website enquirers and Clients Encrypted (SSL) connections

 

Last updated: 14 April, 2021