Freevacy Ltd have completed the Cyber Essentials certification.
Freevacy’s Information security processes were assessed as adequate against cyber-attack. Cyber Essentials is mandatory for central government contracts which involve handling personal information and providing certain ICT products and services.
Freevacy uses several IT cloud service providers to process your personal data:
Freevacy work with the following IT and marketing third-party suppliers (link to privacy notice) who through the course of facilitating their services to us may have access to your personal data:
|
Vendor (link to privacy notice) |
Product |
Data stored in UK or EU |
Legal instrument for data transfer |
Information Security measures in place to protect your data |
|
|
Office 365 Exchange Online SharePoint Skype For Business Teams |
Yes |
ISO 27001, ISO 27018, |
|
|
QuickBooks Online |
- |
EU –US Privacy Shield & Truste |
ISO 27001 |
|
|
Salesforce.com |
- |
BCR & Truste |
ISO 27001, ISO 27018 |
|
|
MailJet |
Yes |
- |
ISO 27001 |
|
|
Eventbrite |
- |
EU –US Privacy Shield |
ISO 27001, PCI DSS |
|
|
Google Analytics Google Tag Manager |
Yes |
EU –US Privacy Shield |
ISO 27001 |
|
|
Web Hosting |
Yes |
- |
ISO 27001, ISO 27018, ISO 22301, ISO 9001, ISO 14001, PCI Compliance, Cyber Essentials +, G-Cloud 12 |
|
|
3rd-Party Customer Reviews |
Yes |
- |
All data is stored on encrypted servers, unused accounts are deleted after 3 months. |
|
|
3rd-Party comments platform |
- |
EU –US Privacy Shield |
|
|
|
3rd-Party Live online chat communications |
- |
SCC |
Communication is over SHA-256 Secure Socket Layer, and all data is stored on encrypted servers. |
|
|
Online video conferencing application for education |
Yes |
ISO 27001 |
||
|
Online training & recruitment portal |
Yes |
N/A |
Data encryption, hosted on ISO 27001 certified platform |