Serious about security
OK its time for some grown up talk. The security of your data is vital and we take it very seriously.
OK its time for some grown up talk. The security of your data is vital and we take it very seriously.
The data centers we use are ISO/IEC 27001:2013 Certified and are some of the most secure facilities in the UK.
The data centers that host our services are manned by physical security guard services 24 hours a day 7 days a week 365 days a year.
Each data center has full CCTV coverage externally and internally 24/7/356
Physical entry restrictions to the property, the facility and the co-located data center within the facility.
Biometric readers with two-factor authentication. Two forms of authentication must be used at the same time to gain access to one of our data centres.
The data center facilities are unmarked as to not draw attention from the outside.
All browser connections and communication is transmitted over SSL (TLS) using a 256-bit cipher suite over TLS 1.2.
User passwords and identifiable data such as child names and date of birth are stored in our database via a cryptographic hashing function with salt. This means that they are not stored in plaintext and it is infeasible to reverse engineer the stored value equivalent.
All data is backed up and stored on a non-publicly visible network on NAS/SAN servers in a separate geographical location. Incremental back ups are taken every hour with full back ups every day.
Servers are configured for power redundancy with battery and generator backup.
