Data Processors

We aim to be transparent about how we handle data, especially personal data and our clients’ data. Transparency includes disclosing, via this page, the suppliers we use to help us deliver our services.

Whilst working for us, these organisations may process personal data controlled by our clients as well as by ourselves. If they do so, they are acting as processors* and/or sub-processors for our clients or us.

We have suitable contracts with all our suppliers who act on our instructions at all times. They will not use, share, or retain client personal data for any purposes other than those necessary for the provision of our services. In most cases, the data processed is not only encrypted ‘in motion’, but also ‘at rest’, making it incomprehensible to our processors and its compromise or disclosure by them impossible.

* Processor is the term used in UK and EU data protection legislation, but these organisations are sometimes referred to as data processors.

wdt_ID	Processor	Country (Processing Country)	Nature of Processing	Personal Data Types	Data Subject Categories	Security Notes
1	Apple Inc	USA (Various)	Cloud file storage, address book, calendar	Contact details	Exigia, clients and suppliers	Encrypted (SSL) connections and data at rest, passwords and two-factor authentication
2	Blue Flame Digital Solutions	Jersey (UK)	Remote and automated website management	Exigia contact details	Exigia only	Encrypted (SSL) access and passwords
3	Giganet Limited	UK (UK)	Internet and telephony supplier	Automated information such as IP address, operating system, and type of device, timestamps, network traffic	Exigia only	Router protected by password (not default) and firewall
4	Host Lincoln t/a Jolt	UK (UK)	Web hosting and related services	Contact details, IP addresses	Clients and other data subjects supplied by clients	Website traffic is encrypted via SSL and/or SFTP connections, access passwords and two-factor authentication for administration
5	HSBC plc	UK (UK)	Banking services	Banking and contact details	Exigia, clients and suppliers as payees	Encrypted (SSL) connections, passwords and two-factor authentication