‘The security of information covering all aspects in the development, sales, deployment, maintenance, operation, and analytics of the products and services offered by W2 Global Data Solutions Ltd including the handling of Personally Identifiable information (PII).’
Cyber Essentials certified
Our last Cyber essentials audit was carried out in February 2020 by APMG. The certificate is renewed annually and is available on request.
Hardware and infrastructure
W2 are a cloud-based business.
We use Microsoft Azure Data centres.
We use industry leading cloud based solutions including the likes of Office 365 & Salesforce.
The W2 Data Centres are Geo-dispersed; ISO 27001, ISO 22301 & ISO 9001 certified as as a minimum.
We use near real time secure data replication and encryption as a standard
Our clients benefit from 24 x 7 onsite security with strict physical controls that comply with ISO standards.
Our Business Continuity Planning (BCP) and Disaster Recovery (DR) testing continues to be in line with ISO 27001 & ISO 22301 standards
We use professional and commercial grade firewalls throughout out network
System, Operations & Applications
We maintain physically and logically separated networks.
We use Multi-Factor Authentication (MFA) and VPN access.
We use professional Anti-Intrusion detection and prevention tools.
Anti-malware software is integrated throughout our systems infrastructure
We regularly conduct 3rd party penetration tests.
We maintain encryption in transit and at rest using standards such as HTTPS and Advanced Encryption Standard (AES) 256-bit encryption.
We have role based access used across all systems.
W2 welcome all forms for responsible disclosure. This includes any vulnerabilities found on any of our products or services. You can contact our security team by emailing bug reports to firstname.lastname@example.org.