Security Policy

 

1. Introduction

This Security Policy outlines the measures Shilo Integrated Services LTD (“we,” “our,” “us”) takes to protect the security of both our clients and laborers. This document applies to all individuals and entities interacting with our services, whether as clients or laborers.

2. Objectives

The primary objectives of this Security Policy are to:

  • Safeguard the personal and sensitive information of our clients and laborers.
  • Ensure secure handling and processing of data across all operations.
  • Prevent unauthorized access, disclosure, alteration, or destruction of data.

3. Security Measures

a. Data Encryption

  • All personal and sensitive information transmitted between our clients, laborers, and our servers is encrypted using industry-standard protocols (e.g., SSL/TLS) to prevent unauthorized interception.

b. Secure Access

  • Access to personal data is restricted to authorized personnel only. We use multi-factor authentication (MFA) and role-based access controls to limit access based on job responsibilities.

c. Physical Security

  • Our data storage facilities are equipped with robust physical security measures, including access controls, surveillance systems, and regular security audits.

d. Network Security

  • We maintain firewalls, intrusion detection systems (IDS), and regular network monitoring to detect and mitigate potential threats to our network infrastructure.

e. Regular Audits and Updates

  • We conduct regular security audits, vulnerability assessments, and updates to our systems to ensure they remain secure against emerging threats.

4. Data Handling and Storage

a. Personal Information

  • Personal data of clients and laborers is stored securely on our servers, which are protected by strong encryption and access controls.

b. Payment Information

  • Payment details provided by clients are processed through secure, PCI-DSS compliant third-party payment processors. We do not store sensitive payment information on our servers.

c. Data Retention

  • Data is retained only for as long as necessary to fulfill our contractual obligations or as required by law. Upon request, data can be securely deleted from our systems.

5. Responsibilities of Clients and Laborers

a. Password Management

  • Clients and laborers are responsible for maintaining the confidentiality of their passwords and access credentials. It is recommended to use strong passwords and change them regularly.

b. Reporting Security Incidents

  • Any suspected security breaches, unauthorized access, or data leaks should be reported to us immediately. We have a dedicated team to respond to such incidents promptly.

6. Incident Response

a. Incident Detection

  • We monitor our systems continuously for signs of security incidents. Automated alerts and manual checks are in place to detect potential breaches.

b. Response Plan

  • In the event of a security incident, we have a detailed response plan that includes isolating affected systems, conducting a thorough investigation, notifying affected parties, and implementing remedial actions.

c. Communication

  • Clients and laborers will be informed promptly if their data has been compromised due to a security breach. We will provide guidance on steps to protect their information and prevent further harm.

7. Compliance and Legal Obligations

a. Legal Requirements

  • We comply with all relevant data protection and privacy laws, including GDPR (General Data Protection Regulation) and UK Data Protection Act, to ensure the security of personal information.

b. Third-Party Compliance

  • Any third-party service providers or subcontractors we engage are required to comply with our security policies and undergo regular security assessments.

8. Training and Awareness

a. Employee Training

  • All employees and laborers are provided with regular security training to ensure they understand their responsibilities and the importance of data security.

b. Client Education

  • We provide our clients with resources and guidance on how to protect their data and avoid common security risks.

9. Policy Review and Updates

This Security Policy is subject to periodic review and may be updated to reflect changes in our operations or emerging security threats. We will notify clients and laborers of any significant changes.

10. Contact Us

If you have any questions or concerns regarding this Security Policy, please contact us at:

Shilo Integrated Services LTD
31 Bevan Close, NR5 8NX
Norwich, United Kingdom
Phone: +44 7496 473901
Email: info@shiloservices.co.uk

This Security Policy is designed to ensure the safety and security of all stakeholders involved with Shilo Integrated Services LTD. We are committed to maintaining a secure environment for both our clients and laborers.

Request a Quote

Please enable JavaScript in your browser to complete this form.
Name
Address

Join our team

Please enable JavaScript in your browser to complete this form.
Name
Address
What are you applying as?
Where did you hear about us?
pdf only