Privacy and GDPR policy
Strawberry7 will implement and maintain technical and organisational measures to protect Customer Data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access.
Strawberry7 will process Customer Personal Data submitted, stored, sent or received by the Customer, its Affiliates or End Users via the Services for the purposes of providing the Services and related technical support to Customer.
Personal data submitted, stored, sent or received by the Customer, its Affiliates or End Users may include the following categories of data: names, addresses, phone numbers, email addresses, user IDs, emails, documents, presentations, images, calendar entries, tasks and other data.
Personal data submitted, stored, sent or received may concern the following categories of data subjects: End Users including Customer’s employees and contractors; the personnel of Customer’s customers, suppliers and subcontractors; and any other person who transmits data, including individuals collaborating and communicating with End Users.
Strawberry7 replicates data over multiple systems to help to protect against accidental destruction or loss. Strawberry7 has designed and regularly plans and tests its business continuity planning/disaster recovery programs.
Appendix 1: Security Measures
Strawberry7 will implement and maintain the security measures set out in Appendix 1. Strawberry7 may update or modify such security measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the Services.
Customer data will be held centrally on a NAS at Strawberry7 which is encrypted using AES 256-bit encryption.
In addition to section 1.1 Customer data will be held on any laptop or backup hard drive issued to Strawberry7 Consultants. All laptops are encrypted using XTS-AES-128 encryption with a 256-bit key.
Any websites hosted by Strawberry7 that involve Customer data transmission such as strawberry7.com and support.strawberry7.com have Extended Validation (EV) SSL encryption with certificates issued by Comodo.
Strawberry7 employs multiple layers of network devices and intrusion detection to protect its external attack.