We take your privacy very seriously and work to the highest standards to keep your data safe. We welcome the introduction of The General Data Protection Regulation (GDPR), which comes into force on the 25th May 2018, as it provides everyone with an opportunity to reflect upon the measures in place to protect data.
eduFOCUS Limited, the providers of the EVOLVE system, is committed to compliance with all relevant EU and Member State laws in respect of personal data, and the protection of the rights and freedoms of individuals whose information we collect and process in accordance with the General Data Protection Regulation (GDPR). Ongoing compliance is embedded in all processes and policies throughout our organisation.
eduFOCUS Limited is already registered with the Information Commissioners Office (ICO) both as a Data Processor for our customers’ data (the EVOLVE system) and as a Data Controller for our own company’s data. To ensure GDPR compliance we are undertaking a comprehensive review of our systems including:
eduFOCUS has always taken the security of data very seriously and our UK-based data centre holds a range of accreditations including, the latest ISO27001:2013, ISO 27018:2014, G-Cloud 9, and the UK Government’s ‘Cyber Essentials’ Accreditation. Additionally, eduFOCUS’ network infrastructure benefits from dedicated firewalls and we are already implementing a range of additional security measures including: