Terms of Service — FreshData Consultants

Security Statement

Introduction

At FreshData Consultants, we prioritise the security of the data entrusted to us. As users of Microsoft Office 365 for all our data storage, email, and communication needs, we combine Microsoft's robust security infrastructure with our own stringent protocols. This Security Statement provides insights into our security commitments.

1. Infrastructure and Application Security

Microsoft's Security: Our data is stored and managed through Office 365, which utilises some of the most advanced security technologies in the industry. Microsoft's data centres employ a range of protective measures, including biometric recognition, advanced threat analytics, and round-the-clock security personnel.

Web Apps: We exclusively use Office 365 web apps, reducing risks associated with desktop app installations and ensuring we're always using the latest, most secure versions of software.

Data Encryption: Office 365 encrypts our data both at rest and in transit, using advanced encryption protocols.

Network Security: Microsoft's infrastructure is fortified with firewalls, intrusion detection systems, and other state-of-the-art mechanisms.

2. Access and Data Security

Multi-Factor Authentication (MFA): All employees are required to use MFA when accessing our systems, providing an additional layer of security by requiring two or more verification methods — something they know (password), something they have (a phone or security token), or something they are (fingerprint or facial recognition).

Access Controls: Role-based access ensures that employees can access only the data they need for their job functions, further enhanced by the MFA protocols.

Backup and Recovery: While Microsoft Office 365 has its backup mechanisms, we also ensure that critical data has redundant backups, compliant with our data retention policies.

3. Employee Training and Procedures

Training: Our employees receive regular training on best practices when using Office 365 applications, with an emphasis on data security, phishing awareness, and the proper use of MFA.

Access Control: Regular reviews of employees' access to Office 365 tools and data are conducted, ensuring minimal risk of unauthorised data access.

4. Incident Response

In case of any security concerns or incidents:

We collaborate with Microsoft's support and security teams for swift response and resolution.

Our internal incident response plan addresses any breaches, including notifying affected parties and taking corrective action.

5. Third-Party Vendors

Our primary data and communication partner is Microsoft. We've thoroughly reviewed their security protocols to ensure alignment with security standards. Any engagements with other third-party vendors are vetted for compliance with security standards.

6. Continuous Improvement

Security is an ongoing commitment. We stay updated with Microsoft's communications regarding Office 365 security and ensure our practices evolve accordingly.

7. Contacting Us About Security

For questions about our security practices or for more details, reach out to us at:

Email: security@freshdataconsultants.com

Postal Address: 20 Haxton Boulevard, Eastburn, Keighley, BD20 8AZ