Privacy Policy
Shropshire Web Team understands and appreciates the requirements of the Data Protection Act 2018. It stores personal data securely and treats it with respect at all times. The Data Protection Act 2018 is the UK's implementation of the General Data Protection Regulation (GDPR).
Personal data
- Shropshire Web Team stores personal data of staff, customers, suppliers and contacts.
- Its legal basis for doing so is 'legitimate interest'.
- It stores the data in order to efficiently deliver its services and provide support to its customers.
- Personal data can include title, name, gender, postal address, phone numbers and email addresses.
- Shropshire Web Team makes every effort to maintain the accuracy of its personal records.
- Access to the personal data is restricted to Shropshire Web Team staff.
- Shropshire Web Team doesn't pass on any personal data to any third party.
Anyone wishing to view what Shropshire Web Team is storing about them should make a data access request.
Data storage
- Shropshire Web Team stores its data (including its own personal data and the personal data of its customers) using it's own web-based software.
- This software runs on a bespoke version of Linux, with MariaDB and PHP/Javascript for storage and retrieval.
- Shropshire Web Team servers are protected by industrial strength firewalls and access to commonly exploited ports is restricted to Shropshire Web Team office IPs.
- Shropshire Web Team servers are hosted securely at an established Data Centre in London.
Shropshire Web Team servers are regularly backed-up at two offsite locations in Cheshire.
Cookies
Shropshire Web Team hosts websites for itself and its customers. It uses cookies on these sites. Non-interactive sites (where a user is simply a visitor) use persistent cookies to monitor usage and so provide statistics on visits and pages viewed. This is achieved using Google Analytics. Please take the time to review the Google Analytics terms of service.
Interactive sites (where a user can sign-in) use session cookies to monitor the interaction and deliver data to the user without repeated requests for authorisation. Further information detailing how we store your data is included in our Data Security Policy below.
Data Security Policy
This document explains how and where your data is stored when you use Shropshire Web Team Cloud, or a Shropshire Web Team product such as our digital display screen. The information detailed in this document also applies to any bespoke project created by Shropshire Web Team which uses our cloud system at its core.
Hardware & software
Shropshire Web Team operates a number of virtual & physical servers located at a data-centre in London. Our core cloud server features redundant power supplies along with battery backup and a generator. The hardware itself is located in a secure facility with access closely monitored and strictly controlled. The servers we operate are owned and managed by Shropshire Web Team Limited.
No third party companies or organisations have access to our systems. However, it is sometimes necessary for independent data- centre engineers to be given temporary access to perform upgrades or essential maintenance.
Our infrastructure is protected by industrial strength firewalls, with access to commonly exploited ports such as FTP (21) and SSH (22) restricted to Shropshire Web Team's static IP addresses.
All cloud data is managed using mySQL and accessed via a CMS (content management system) developed by Shropshire Web Team using an NGINX/PHP architecture. This infrastructure runs on a customised installation of Linux, chosen for its security, reliability and speed.
Data capture & storage
Captured data is stored using mySQL and transmitted securely via 256 bit SSL. All our security certificates are independently A-rated by Qualys. They feature super-strong ciphers and 4096bit Diffie-Hellman keys for enhanced security.
By default, uploaded customer data is restricted to everyone except the cloud administrator. The cloud administrator will be allocated as your contract is finalised. Once allocated, this user can sign into our cloud using an encrypted password. They are then free to create additional users and grant permissions as required. Shropshire Web Team cannot read any passwords, although we can reset them if required.
Once stored, all customer data is backed up securely at two independent locations. Backups are held in accordance with our GDPR policy (above), and are stored on NAS devices using RAID (redundant array of independent disks).
We take every care to ensure that your data is stored safely and securely. However, Shropshire Web Team accepts no liability for any losses incurred through loss of data. Please make sure you keep local backups of all data you upload to our servers.
Access to customer data is logged and irregular sign-in requests are reported. Multiple incorrect attempts to access data will result in an IP block.
For more information on how we manage and protect your data, please email data@shropshirewebteam.co.uk or alternatively phone 01743 562690.
"...Toby has worked so hard on getting my website exactly how I wanted it (with the patience of a Saint), I've have so many compliments & positive feedback. Highly recommended. Thank you Shropshire Web Team!..."
"...We came across Shropshire Web Team and what a stroke of luck this was! They have been, and continue to be, just superb. Communication is great, they know their stuff...You will not regret choosing these guys..."
"...Huge thanks to Shropshire Web Team for their brilliance. Highly recommend them..."
"...I have been extremely happy with the help and support provided to me by Shropshire Web Team. They are knowledgeable in their field and have always been very approachable and easy to work with..."
Contact Details
info@shropshirewebteam.co.uk
01743 562690
Shropshire Web Team Limited
Office 286, 8 Shoplatch
Shrewsbury
Shropshire
SY1 1HF
Mailing List
Get all the latest news and updates from our Development Team.
We will never share your email
address with a third party