Schedule it Ltd is GDPR compliant for Business and Enterprise Plans
View our Data Processing Addendum (DPA) here
We support the GDPR and will ensure all Schedule it Ltd services comply with its provisions. Not only is the GDPR an important step in protecting the fundamental right of privacy for citizens, it also raises the bar for data protection, security and compliance in the industry. Schedule it Ltd is committed to General Data Protection Regulation compliance.
On 25th May 2018, a comprehensive new set of rules known as General Data Protection Regulation (GDPR) will come into effect in the European Union (EU), redefining the way Schedule it Ltd and other companies collect, store, and share personal data.
We consider every element of customer data and have designed our security envelope with that in mind:Defined organizational security standards and procedures.
All employees and contractors required to sign a confidentiality agreement.
Background checks for all employees that have access to customer data.
Timely removal of access to customer data from any employee or contractor that leaves the company or who no longer requires access.
Ongoing staff training on all internal security policies and general security awareness.
Our data centres are all in London, UK and are SSAE16/ISAE3402, PCI-DSS, OHSAS 18001, and ISO 27001, 9001 and 50001 certified, ensuring the highest possible standards in data security.
We utilize top-tier hosting providers that protect customer data from external threats.
All data we store is fully encrypted at rest.
We continually perform vulnerability testing against threat and attack vectors to detect any security vulnerabilities in payment processes, to avoid ransomware, and other threats.
Our customers can rest assured that we adopt and meet not just current requirements, but also regulations as they evolve.
If you have any further questions or queries regarding GDPR please email firstname.lastname@example.org