Data security and protection
All traffic to our systems is secured using SSL encryption (TLS 1.2 with AES 256 CBC encryption, HMAC-SHA1 message authentication and ECDHE_RSA key exchange), with encryption on data stored at rest.
Our systems log to a centralised, monitored logging solution. User access to systems is determined using a granular, role-based access management system. This ensures that all client data is safe-guarded and kept on a “need-to-know” basis.
Resilience and operations
Security is a priority for us when it comes to your personal data. We’re committed to protecting your personal data, and have appropriate technical and organisational measures in place to make sure that happens.
Our infrastructure is hosted on dedicated hardware spread across two geographically resilient data centres within the European Union (EU). Each data centre has multiple redundant network connections, resilient power supplies, video surveillance, dedicated secure racks, and automated environment controls.
All our production system and services are managed through our centralised Global Support Team. This team is responsible for the backups, logging and monitoring, and service management, including all account management, incident management and change management, as well as proactively assessing current security threats and performing updates to environments as required.
People, processes and practices
Our staff and translators have dedicated work instructions and processes as defined in our ISO Certified Business Management System. This dictates the specific ways in which information will be handled, stored and transferred at different project stages. All team members are only provided access to the information they need to conduct their role.