Data security and GDPR compliance at PSE isn’t just a priority—it’s the cornerstone of our operations. We treat our clients’ data with the utmost care and strictly adhere to data protection laws, while handling millions of records annually.
We believe it’s important to share why GDPR data security matters and, more importantly, what we’re doing to reassure our clients that their information is in safe hands.
Why Data Security & Compliance Matter:
Legal Compliance with GDPR: Adhering to GDPR and other data protection regulations is not only non-negotiable but also critical. Non-compliance can lead to significant penalties.
- Risk Mitigation: Data breaches and unauthorised access are real threats. Therefore, we implement advanced data security protocols to prevent these risks.
- Business Continuity: The loss or theft of critical customer data can disrupt operations, impact campaigns, and harm client relationships. Thus, our robust data security measures ensure resilience.
- Ethical Responsibility in Data Handling: Protecting personal data is an ethical obligation. In addition, responsible data handling practices foster long-term partnerships with our clients.
Our GDPR-Compliant Data Security Measures:
- Secure Data Transfer: We encrypt all data transfers via via TLS or SSH, exceeding GDPR requirements and ensuring secure data movement.
- Encrypted Data Storage: We support our use of AES 256-bit encryption for all stored data with strict password policies, regular penetration testing, and multi-point authentication to maintain the highest level of security.
- Data Retention Policies: We only retain data as long as necessary for our services, typically no more than 60 days post-campaign, after which it is securely deleted in compliance with GDPR.
- Restricted Data Access: We silo data to minimise access, and our staff undergo regular GDPR data security training. Our systems are regularly audited to ensure compliance and continuous improvement.
- Data Minimisation: We only collect the essential data—typically just name, address, spend, and timeframes—to meet campaign objectives. We provide clients with guidelines to ensure minimal data sharing.
- Third-Party Compliance: We transparently communicate and strictly control any third-party involvement under our Data Processing Agreement, ensuring all partners meet our rigorous GDPR-compliant standards.
At PSE, data security and GDPR compliance are about building trust, upholding ethics, and practising responsible marketing. We are committed to protecting the confidentiality and integrity of every record we manage.
Check out one of our latest blog posts on GDPR & Legitimate Interest for Direct Mail Marketing for more info!