Website Security Policy for Into Property Investing

Last Updated: 25 May 2024

At Into Property Investing, we prioritize the security of our website www.intopropertyinvesting.com and the protection of your personal data. This policy outlines the measures we take to safeguard our Site and users against unauthorized access, data breaches, and cyber threats.

1. Data Protection Measures

  • SSL Encryption: Our Site uses Secure Socket Layer (SSL) technology to encrypt data transmitted between your browser and our servers (e.g., form submissions, logins). Look for the padlock icon in your browser’s address bar.
  • Regular Security Audits: We conduct routine vulnerability scans and penetration tests to identify and address potential risks.
  • Secure Data Storage: User data is stored on encrypted servers with restricted access.
  • Access Controls: Only authorized personnel have access to sensitive information, and multi-factor authentication (MFA) is enforced where applicable.

2. Threat Prevention

  • Firewalls & Malware Scans: Advanced firewalls and malware detection tools are used to block malicious traffic.
  • Software Updates: Our Site’s software, plugins, and third-party tools are updated promptly to patch security vulnerabilities.
  • DDoS Protection: Measures are in place to mitigate Distributed Denial-of-Service (DDoS) attacks.

3. Incident Response

  • Breach Protocol: In the unlikely event of a data breach, we will notify affected users and the UK Information Commissioner’s Office (ICO) within 72 hours, as required by GDPR.
  • User Notification: If your data is compromised, we will contact you via email with guidance on protective steps.

4. User Responsibilities

  • Account Security: If you create an account on our Site, you are responsible for maintaining strong passwords and safeguarding login credentials.
  • Phishing Awareness: Be cautious of unsolicited emails or messages claiming to represent us. We will never ask for sensitive data (e.g., passwords, payment details) via email.
  • Reporting Suspicious Activity: Alert us immediately at enquiries@goodwin-property.co.uk if you notice unauthorized access or vulnerabilities.

5. Third-Party Services

  • We vet third-party tools (e.g., payment processors, analytics providers) for compliance with industry security standards. However, we are not liable for breaches originating from external services.

6. Compliance & Certifications

  • GDPR & UK DPA 2018: We adhere to data protection laws, ensuring transparent and lawful processing of personal data.
  • PCI DSS Compliance: If we process payments, we comply with Payment Card Industry Data Security Standards (PCI DSS).

7. Contact Us

For security-related concerns, contact: Email: enquiries@goodwin-property.co.uk

Updates to This Policy
We reserve the right to update this policy to reflect evolving security practices. Changes will be posted here with a revised "Last Updated" date.

Related Policies

Notes for Implementation:

Replace (link-to-your-privacy-policy) and (link-to-your-terms-of-use) with actual URLs.

If your Site processes payments, explicitly name your payment processor (e.g., Stripe, PayPal) and link to their security policies.

Add certifications (e.g., ISO 27001) if applicable.

INTO PROPERTY INVESTING

© 2024 Intopropertyinvesting.com All Rights Reserved