General – System Security
General information
Where we store your personal data, we do so on our own dedicated servers, which are hosted in secure data centres strategically placed in Dublin and London.
Access to our servers is controlled at both an electronic and a physical level to ensure the safety of your personal information.
We employ multiple levels of security, including, but not limited to:
Firewall protection
We employ firewall protection at both a network appliance level and locally on our servers to prevent unauthorised access to your data.
Intrusion detection and prevention
We employ automated systems to detect and block intrusion attempts from 3rd parties.
Penetration Testing
We retain the services of an independent third party organisation to perform intrusion testing on a periodic basis on critical servers in order that we can keep up to date with any vulnerabilities that may be present.
Use of SSL
When you exchange any personal information with us, we employ SSL (secure sockets layer). Look for the padlock or similar mark on your browser which confirms that your transaction is secured.
Encryption of sensitive data
Even with all the methods we use to protect your data, some data, such as password and credit card details, is simply too sensitive to risk the possibility of discovery. We employ industry leading asymmetric encryption techniques to ensure the ultimate security of such data.
Access of Goldfish staff to your data
As well as your personal data, you may subscribe to services (such as Fax to Email, Email hosting), which involve transmissions intended for you being passed through, or stored on our systems. Such material is ordinarily kept on our systems for the minimum amount of time practical, but may remain indefinitely depending on the practicalities of identifying material that requires deletion.
Goldfish staff will not ordinarily access this material, except in the event of request by the Police as part of a criminal investigation or by any other legally entitled authorities or where permission has been obtained from you to do so (for instance in the event of tracing a fault).
We have in place appropriate physical, electronic, and managerial procedures to ensure that this is adhered to.
No Goldfish staff member has access to any encrypted information, this includes your card details and account password.