We aim to be transparent about what we do with data, especially our clients' data, and that includes disclosing the suppliers we use to help us deliver our services. Whilst working for us, these organisations may process personal data controlled by our clients as well as by ourselves. If they do so, they may become our processors* and/or sub-processors for our clients.
We have suitable contracts with all our suppliers and they act only on our instructions. They will not use, share, or retain client personal data for any purposes other than those necessary for the provision of our services. In most cases, the data processed is not only encrypted 'in motion', but also 'at rest', making it incomprehensible to our processors and its disclosure or compromise impossible.
We keep our clients informed about our processors via this web page.
* processor is the term used in data protection legislation, but they are sometimes known as data processors
|wdt_ID||Processor||Country (Processing Country)||Nature of Processing||Personal Data Types||Data Subject Categories||Security Notes|
|1||Apple Inc||USA (Various)||Cloud file storage, address book, calendar||Contact details||Exigia, clients and suppliers||Encrypted (SSL) connections and data at rest, passwords and two-factor authentication|
|2||Blue Flame Digital Solutions||Jersey (UK)||Remote and automated website management||Exigia contact details||Exigia only||Encrypted (SSL) access and passwords|
|3||Giganet Limited||UK (UK)||Internet service provision and telephony||Automated information such as IP address, operating system, and type of device, timestamps, network traffic||Exigia only||Router protected by password (not default) and firewall|
|4||Host Lincoln t/a Jolt||UK (UK)||Web hosting and related services||Contact details, IP addresses||Clients and other data subjects supplied by clients||Website traffic is encrypted via SSL and/or SFTP connections, access passwords and two-factor authentication for administration|
|5||HSBC plc||UK (UK)||Banking services||Banking and contact details||Exigia, clients and suppliers as payees||Encrypted (SSL) connections, passwords and two-factor authentication|
|6||Internet Security Research Group||USA (USA)||Issue of Let's Encrypt SSL certificates||Exigia contact details||Exigia only||Encrypted (SSL) access and passwords|
|7||Microsoft Corporation||USA (UK)||OneDrive Cloud file storage||As supplied by clients||Clients||Encrypted (SSL) connections, passwords and two-factor authentication|
|8||Proton AG||Switzerland (Switzerland)||Secure email and file transfer||Multiple||Clients and prospective clients||Data encrypted in transit (SSL) and at rest, passwords.|
|9||QuickFile Ltd||UK (UK)||Accounting records||Supplier and client contacts/invoicing details||Exigia and clients||Encrypted (SSL) connections, passwords and two-factor authentication|
|10||Sectigo Inc||USA (USA)||Issue of SSL certificates||Supplier contact details and minimal client account information needed to issue SSL certificates (not personal)||Exigia and clients with websites supported by Exigia||Encrypted (SSL) connections and passwords|
|11||Tawk.to Inc||USA (USA)||Website ‘chat’ service||Automated information such as IP address, operating system, and type of device plus some contact and other information supplied by clients and enquirers||Website enquirers and clients||Encrypted (SSL) connections|
|12||Amazon||USA (UK)||Email management and processing||Contact details and varied content||Exigia, clients, suppliers, enquirers, prospects, clients' contacts||Encrypted (SSL) connections and data|
|13||Sendinblue||France (EU)||Mail management and processing||Contacts, preferences, mail content||Exigia, clients, suppliers, enquirers, prospects, clients' contacts||Connections are encrypted using SSL connections, passwords and data encrypted at rest|