Our Processors

We aim to be transparent about what we do with data, especially our clients' data, and that includes disclosing the suppliers we use to help us deliver our services. Whilst working for us, these organisations may process personal data controlled by our clients as well as by ourselves. If they do so, they may become our processors* and/or sub-processors for our clients.

We have suitable contracts with all our suppliers and they act only on our instructions. They will not use, share, or retain client personal data for any purposes other than those necessary for the provision of our services.​ In most cases, the data processed is not only encrypted 'in motion', but also 'at rest', making it incomprehensible to our processors and its disclosure or compromise impossible.

We keep our clients informed about our processors via this web page.

* processor is the term used in data protection legislation, but they are sometimes known as data processors

wdt_ID Processor Country (Processing Country) Nature of Processing Personal Data Types Data Subject Categories Security Notes
1 Apple Inc USA (Various) Cloud file storage, address book, calendar Contact details Exigia, clients and suppliers Encrypted (SSL) connections and data at rest, passwords and two-factor authentication
2 Blue Flame Digital Solutions Jersey (UK) Remote and automated website management Exigia contact details Exigia only Encrypted (SSL) access and passwords
3 Giganet Limited UK (UK) Internet service provision and telephony Automated information such as IP address, operating system, and type of device, timestamps, network traffic Exigia only Router protected by password (not default) and firewall
4 Host Lincoln t/a Jolt UK (UK) Web hosting and related services Contact details, IP addresses Clients and other data subjects supplied by clients Website traffic is encrypted via SSL and/or SFTP connections, access passwords and two-factor authentication for administration
5 HSBC plc UK (UK) Banking services Banking and contact details Exigia, clients and suppliers as payees Encrypted (SSL) connections, passwords and two-factor authentication
6 Internet Security Research Group USA (USA) Issue of Let's Encrypt SSL certificates Exigia contact details Exigia only Encrypted (SSL) access and passwords
7 Microsoft Corporation USA (UK) OneDrive Cloud file storage As supplied by clients Clients Encrypted (SSL) connections, passwords and two-factor authentication
8 Proton AG Switzerland (Switzerland) Secure email and file transfer Multiple Clients and prospective clients Data encrypted in transit (SSL) and at rest, passwords.
9 QuickFile Ltd UK (UK) Accounting records Supplier and client contacts/invoicing details Exigia and clients Encrypted (SSL) connections, passwords and two-factor authentication
10 Sectigo Inc USA (USA) Issue of SSL certificates Supplier contact details and minimal client account information needed to issue SSL certificates (not personal) Exigia and clients with websites supported by Exigia Encrypted (SSL) connections and passwords
11 Tawk.to Inc USA (USA) Website ‘chat’ service Automated information such as IP address, operating system, and type of device plus some contact and other information supplied by clients and enquirers Website enquirers and clients Encrypted (SSL) connections
12 Amazon USA (UK) Email management and processing Contact details and varied content Exigia, clients, suppliers, enquirers, prospects, clients' contacts Encrypted (SSL) connections and data
13 Sendinblue France (EU) Mail management and processing Contacts, preferences, mail content Exigia, clients, suppliers, enquirers, prospects, clients' contacts Connections are encrypted using SSL connections, passwords and data encrypted at rest