< All Topics

Our GDPR (General Data Protection Regulation) Statement

At ABCOM, we maintain the security, processing and integrity of all our data (internal and client data) with best practices and guidelines from statutory bodies such as the Information Commissioner’s Office (ICO). Our internal audit maps the whereabouts of our data and how data is processed, transferred and stored.

We deploy Firewall defences between our local area network and external networks to defend our data from external threats. We have also installed state-of-the-art anti-virus and anti-malware defences against threats such as computer viruses, cryptolockers and trojans. All our computers are installed with the latest patches to lock down system vulnerabilities.

We enforce strong passwords when accessing internal and client systems, passwords are changed periodically, and authorisation to access data and systems is only granted by the Directors at ABCOM. Only authorised support staff have access to client data and systems.

ABCOM backup its data and client data (subject to service contract) to GDPR-compliant providers. All data are encrypted at AES-256-bit military-grade encryption during the transmission and in storage. A typical backup strategy involves a full image backup with subsequent incremental backups; this aids the ease of restoring the required data.

Our backup and BCP (business continuity plan) solutions help our client to comply with the new regulation’s requirements and to support their privacy policy. Article 32 of the GDPR requires data controllers and processors to implement technical and organisational measures that ensure data security appropriate for the level of risk presented by processing personal data. Data security measures include restoring access to personal data during a physical or technical security breach. Our offsite cloud solution help organizations protect and secure their data to meet their RTO (Recovery Time Objective) and RPO (Recovery Point Objective) in the event of a disaster, thereby recovering personal data.

Yann Davies

Managing Director

GDPR rules

GDPR rules

More on this subject here: