Our Approach to Safe and Secure Data Management
The security of data is paramount to us. We have a fully transparent approach with members of the public, clients and stakeholders, reflected in how we work and the policies that underpin this. We confirm we will adhere to your data protection policies at all times during delivery of this project.
Information Governance
We will fully comply with your Information Governance Policy, by ensuring we take a transparent approach, as set out in our privacy policy, published on our website.
Secure IT infrastructure
We are used to handling commercially, personal and politically sensitive data. Our Data Security policy ensures all data and personal information is kept safely and securely, with confidentiality respected at all times. Our approach is compliant with Data Protection Act, GDPR, Information Commissioner and ISO9001 requirements.
Secure Email and Storage
We use Microsoft Office 365 email provision using multi-factor authentication for general emails. We use EGRESS secure email and cloud storage for any sensitive or personally identifiable data. All files containing identifiable or sensitive data are encrypted and password protected. We implement the UK Government’s Cloud Security principles for managing all of our digital data storage and communications.
Data Confidentiality
Mojometer is registered with the Information Commissioner’s Office (reference ZA273132). Matthew Scott is the named Data Controller. We will only process personal data in accordance with instructions from you as set out in our contract or in project management discussions. Our staff are trained annually in Data Protection Act and, now, GDPR compliance.
GDPR Compliant
We fully comply with General Data Protection Regulation requirements by:
- Adhering to our publicly accessible privacy policy
- Only keeping data for the minimum period required to complete specific projects
- We never share any personal information
- We only capture the minimum amount of personal data to complete the lawful function of the project
- We never market to individuals who respond to public consultations
- We safely and securely destroy all data at the end of projects
- We have a Data Protection Officer and trained staff
- We report any data breaches
- All data is encrypted and securely stored within the EU