Your Data Security is Our Priority 

Your data matters, and when you share it with us, you deserve to know it’s in safe hands.

Data protection is about more than just ticking boxes—it’s about earning your trust and making sure you feel confident every step of the way.

🔏Encryption: Keeping Your Data Safe

We encrypt your data at all times—whether it’s being stored or sent over the internet. This means your information is turned into unreadable code, accessible only to authorised users with the right keys. So, even if someone intercepts it, they won’t be able to read or misuse it.

🆔Access Control: Who Can See Your Data?

We understand how important it is for you to control who has access to your data. That’s why GovMetric CX and CaseTracker offer security features like Single Sign-On (SSO) and multi-factor authentication (MFA). MFA adds an extra layer of protection, requiring more than just a password to log in, such as a fingerprint or a code sent to your phone. For an even simpler, secure login experience, SSO allows you to use your existing account (like Microsoft or Google) across platforms, often with MFA included.

Our products also use role-based access control, ensuring that only authorised team members can see sensitive data. CaseTracker, in particular, lets you set up multiple roles, ensuring only those with the right clearances can access specific case data.

☁️Shared Cloud: Keeping Your Data Separate

In our shared cloud environments, multiple customers use the same infrastructure, so we ensure that your data is kept separate. We use unique identifiers to logically separate your information and run extensive tests to guarantee security. Our test harnesses run with every code change to maintain data integrity and prevent any mixing of information between customers.

♻️Ongoing Security: Proactive and Reactive

Security isn’t a one-time effort. We’re always reviewing our products and processes, looking for potential vulnerabilities before they become problems. Our test harnesses check for weaknesses in third-party software packages, and we update or replace any flagged as critical. We use the OWASP Dependency Check tool, a trusted resource from the Open Web Application Security Project, to ensure everything is secure.

We also conduct regular penetration tests, both internally and through third-party auditors. Any issues found are promptly addressed, and new tests are added to our ongoing checks. Our team stays up-to-date with the latest industry exploits and reviews the National Vulnerability Database to act on any new risks.

❗What If Something Goes Wrong?

We’ve got backup plans. We regularly back up your data to ensure that, in the rare event of a server failure or cyberattack, your information is safe and can be restored quickly. We don’t just rely on hope—our disaster recovery plans are tested regularly, so we’re prepared if the worst happens.

🫵Your Role in Security

You play a part in keeping your data secure, and we’re here to help. We’ve updated our products to enforce strong passwords and password rotation. We also check your chosen passwords against known weak password lists. If you can’t use SSO, we strongly recommend using a password manager, like 1Password or NordPass, to store and protect your login details.

✅Certifications: Going the Extra Mile

We don’t just talk about security—we prove it. We’ve earned certifications like ISO 27001, Cyber Essentials, and Cyber Essentials Plus, ensuring our security measures go beyond the software, extending to our internal processes and practices.

🔑Take Control of Your Security Today

Trust is built on transparency and action. We’re committed to keeping your data safe and providing the tools and support you need to stay secure. If you haven’t already, consider using MFA or SSO to protect your account, and explore password managers to simplify your security.

If you would like to discover some of our Customer Stories, highlighting real-world customer experience transformations within the public sector, click below.