The new General Data Protection Regulations come into force on 25th May 2018 from this date Chandlers archives will have additional responsibilities on our customer’s data that we hold and process
Protecting our customer’s data is our top priority within Chandlers archives.
The data we hold both in hard copy or electronically, will only be shared with the customer that gave us that data.
Chandlers Archives hereby undertakes not to copy, release, divulge or communicate, either in writing, orally, electronically or by any other means, to any third party, either directly or indirectly, any information not already in the public domain relating to any of our customers.
All data that we receive and store from our customers or visitors to our website (hereby referred to as ‘you’) is done so for the sole purpose of helping you with the specific enquiry you made. Under no circumstances will we pass on this data to a third party.
If you require any further clarification, please use our phone number provided to call for assistance.
Any data you pass onto us which is personal to you and can directly identify you, such as your name, email address, phone number etc, will be dealt with as securely as possible. This includes the points below;
We have in place IT systems that allow us to quickly identify and remove any data held about you, should you wish to be forgotten by us. This is inline with the GDPR ‘right to be forgotten’ and we will comply within the EU specified 1 month period.
We take website security very seriously and have taken a great deal of precaution to
make sure that our website is safe from attack or misuse. A brief background on website security and also what specific steps we have taken to secure our website.
The actual server that the website is located on needs to be secure so that unauthorised persons cannot access it. Our website is with a large specialist web hosting company who have been in the industry for over 12 years, winning many an award.
The benefit of using a specialist web hosting company over setting our own server up is that they are constantly looking for security issues that may arise and fixing them instantly if they do.
Our server login password is also a mixture of uppercase and lowercase letters,
numbers and symbols for maximum security. Weak passwords are a huge security concern and should be avoided at all costs.
All passwords stored in our database use an encryption so that anyone looking at the database will just see a random 40 character string. This has the benefit that should a backup of the database fall into the wrong hands they would still not be able to use the username and passwords to gain access to the system.
This encryption also ensures the staff that does have access to the database, cannot see what the actual password of each user is. This also rules out any possibility of registered users having their password used to gain access to other systems they may have used the same password for.
One of the most important parts of the website security of our system is the SSL certificate. What this does is encrypts any data that is transmitted when using our website. This ensures that when people login to our system no data can be seen by a third party. It also allows for secure messages to be passed on from users of the website to our admin team without the fear of the message being read by any unintended person.
The SSL certificate should always be looked for when using our website so that you can tell that the website is secured. This helps the user rule out entering data into the wrong website.
This is a security issue called phishing which has been used in the past to get peoples bank details off of them. This method is when someone sets up a
similar looking website and tricks the user into using this website thinking it is the original system. However, the SSL certificate will only show for the genuine web site so allowing the user to check for this certificate ensures that they have not been tricked into putting any confidential information into the wrong website.
The SSL certificate we use has a 99.9% Browser Recognition Rate which means it will be available for all modern internet browsers. The more technical details of the certificate are that it is 256 Bit Strong SSL Encryption.