Data Privacy Statement
Data Privacy Statement for Data Trust Limited trading as Data Trust and INWEB Managed Web Solutions
This document has been created by Data Trust Limited with a view to providing customers with a full understanding of why their data is collected, how their data is stored / managed / and used by Data Trust Limited
Data Trust Limited understands and recognizes its obligations under GDPR. Data collected by Data Trust Limited is done so for the sole purpose of providing IT and Web Services to clients.
Customers are entitled to request a copy of their electronic data held by Data Trust Limited at any time.
The following Customer Data is recorded and stored by Data Trust Limited:
- Customer name & address
- Customer email address
- Customer phone number
- Customer IT passwords, server settings etc.
- Customer backups
To provide IT and Web Services to clients, customer data is kept electronically on secured and managed IT Systems.
As an IT company, we work with a number of external IT service providers- this is necessary to provide a broad range of IT and Web services to clients. Customer Data is shared with a few external IT service providers (Microsoft, Google etc..) who provide services to Data Trust Limited, and directly to clients, allowing us to meet our SLA obligations with clients.
External IT service providers’ privacy statements are available on request. Data Trust Limited makes every reasonable effort to assure external IT Service providers use all information in a manner consistent with this policy.
DISCLOSURE TO THIRD PARTIES
Data Trust Limited confirms customer data is not provided to any non-related third-party companies. All customer data is stored within the EU and is not shared with any other company, organization, or individual (except where required for the provision of services to clients).
Data Trust Limited has trained all staff on how to collect, manage, and protect customer data. Protecting customer data is not just a legal requirement but imperative to protect our customer’s business.
To provide IT and Web Services to clients, Data Trust Limited stores all customer passwords in an Encrypted Database that is not connected to the internet. Only staff directly involved in the managing of customer data has access to client data.
Data Trust Limited does not give customer passwords to third party companies.
DATA TRUST LIMITED – INTERNAL SECURITY
As an IT company, Data Trust Limited takes IT and Network security very seriously. Where possible, we deploy Two Factor Authentication internally to protect customer data and applications storing customer data.
All staff laptops are encrypted with full disk encryption and all memory keys are encrypted.
REMOTE IT SUPPORT
To provide remote IT support to clients, Data Trust Limited use a variety of remote access technologies. All remote access systems use 256 AES Encryption and two-factor authentication to ensure this is operated using Industry Standard Security.
BACKUP ONLINE SERVICE
Data Trust Limited provide an optional backup online service to clients. With this service, we backup critical customer data with the intent of securing and restoring this data in the event of data loss or data corruption.
All data is encrypted before leaving site and remains encrypted until such time as the customer needs their data restored. The encryption uses a unique Encryption key that the customer will be provided with upon setup.
All data is stored within the EU and access to data is restricted to qualified, trained engineers.
Under no circumstances does Data Trust Limited provide customer data to third parties for resale.
All queries relating to data privacy should be address to- Data Controller, Data Trust Limited, Unit B1 Dunshaughlin Business Park, Dunshaughlin, Co Meath