Information Security is no longer a luxury. It’s a basic necessity.
Brendon Silver, CEO VAT IT Reclaim
Data Protection 24/7, 365 days a year
We are aware that our clients’ personal data and expense data requires the highest levels of protection. As a result we have made information security a very high priority and have implemented safeguards to protect your data 24/7, 365 days a year.
We are GDPR compliant. We also have a data access request policy which ensures that data subjects’ rights are protected and provides them with a mechanism that enables them to know where their data is at all times.
ISO 27001 Certified
We were the first industry player to have taken compliance to the next level. In July 2017, VAT IT Reclaim became the first VAT recovery business to be ISO 27001:13 certified and ISO 9001:2015 compliant. This means we abide by the International Standards organisation’s policies of compliance.
Storage and Encryption
All data is encrypted at rest in our database using AES-256 Encryption.
Depending on the transmission mechanism data is encrypted in transit using the following mechanisms:
SSL encryption (HTTPS);
SSL encryption (SFTP) (should this be chosen by the client as a mechanism for transfer);
Microsoft SharePoint security controls (should this be chosen by the client as a mechanism for transfer).
Advanced Logging & Monitoring
Advanced logging and monitoring are used to track every transaction on our system. We ensure that only authorised personnel have access to your data.
For more information, download our Information Security Policy and POPI & PAIA