Information Security Policy
Version 1.2
It is the policy of Silicon Grid Ltd. to maintain an Information Security Management System (ISMS) which is designed to meet the requirements of ISO 27001. We will strive to continuously improve our ISMS through having the framework in place for setting, monitoring, reviewing, and achieving our objectives. We will seek continual improvement in the effectiveness and performance of our management system based on analysis of risks.
We will address any identified risks, threats, or vulnerabilities by applying the appropriate security risk treatments.
We will ensure that our policy is available to all internal interested parties via our notice board / file server and to all external interested parties on request, and we will comply with all legal, statutory, contractual requirements, and all relevant codes of practice.
To pursue our policy, we will be guided by these fundamentals;
-
Confidentiality – ensuring that information is not made available or disclosed to unauthorised individuals, entities, or processes
-
Integrity – safeguarding the accuracy and completeness of assets
-
Availability – being accessible and usable upon demand by an authorised entity
Our Information Security System is intended to promote safe and reliable working practices. This policy outlines the standards that you must observe when using these systems, when we will monitor their use and the action that we will take if you breach these standards.
Every employee is responsible for implementing our Information Security Management System and, as the Managing Director, I would emphasise our commitment to this system and will ensure that the proper resources are allocated to implement this policy effectively.
The scope of this policy relates to the use of all systems operated by the company in pursuit of providing all Silicon Grid services.
This policy will be reviewed, and if necessary revised, annually during the Management Review.
Quality Policy
Version 1.2
To maintain and improve our competitive advantage, we have to increase and maintain customer satisfaction and value of our service at all times.
We shall achieve this by using the quality management system ISO 9001 as a platform for ensuring process stability, leading to greater efficiency and customer satisfaction via a programme of continual improvement. We are fully committed to comply with the requirements of ISO 9001 and to continually improve the effectiveness of the quality management system.
We pride ourselves on being professional in everything we do and encourage our employees to represent the company by demonstrating their team spirit, expertise and integrity, in order to maintain and develop the company’s good reputation not only in the UK but worldwide.
A variety of Key Performance Indicators (KPI’s) shall be used to measure the success of increasing our customer value targets, business objectives and process improvement. Objectives will be set and approved at our annual Management Review, which will include action points and targets.
Customer satisfaction is key to achieving our goals and we shall be prepared to introduce or amend KPI’s as a result of customer feedback and to assess the suitability of the quality policy statement, as part of our ongoing management review process.
In the process of complying with our policy document, and with consideration to our continual improvement, we will ensure compliance with all of our legal and statutory requirements. This will be reviewed at least annually and will be reported at the Management Review.
This policy will be made available by distribution on the noticeboards to all company employees and will also be available to all relevant interested parties.
Privacy Policy
Version 1.0
This privacy policy will help you understand how Silicon Grid Ltd ("us", "we", "our") uses and protects the data you provide to us when you use our services. We reserve the right to change this policy at any given time.
We have designated data protection officers who handle inquiries about this privacy notice and oversee various groups within our organisation. Should you have any inquiries or requests, do reach out to us by email at support@silicongrid.com
​
Why We Collect Your Data
We only gather and use your personal information where it serves a legitimate purpose and is allowed by data protection legislation. It's crucial that you maintain the accuracy of your personal data with us, so please notify us of any changes.
We collect your data for several reasons:
-
To better understand your needs.
-
To improve our services and products.
-
To send you promotional material containing information we think you will find interesting.
-
To contact you to fill out surveys and participate in other types of market research.
-
To contact you to regarding existing or future projects.
-
To fulfil our duties as an employer i.e. human resource records.
​
How We Collect Your Data
-
When you visit our website.
-
When we communicate for example via email, phone or in person,
-
As part of our employment/onboarding process.
​
What Data We Collect
When you visit our website, we may collect the following data:
-
Your IP address.
-
Your contact information and email address.
-
Other information such as interests and preferences.
-
Access times.
-
Type and version of your browser.
-
Your time zone.
-
Kinds and versions of your browser plug-ins.
-
Your screen resolution.
-
Your operating system version.
-
Length of visits.
-
The clickstream to, though, and from our website.
-
Data profile regarding your online behaviour on our website.
​
When we communicate for example via email, phone or in person:
-
Your contact information and email address.
-
Other information such as interests and preferences.
-
Phone/email/digital conversations.
​
As part of our employment/onboarding process and updated when appropriate.
-
Name.
-
Address.
-
Contact information such as phone number and email address.
-
Copy of educational certificates and certifications.
-
Curriculum vitae.
-
Bank details.
-
Copy of ID such as passport and driving license.
-
Additional information as part of background checks and right to work checks.
-
Supporting information for references if applying for say accommodation or a mortgage etc.
-
Payroll and pension details relating to employment with Silicon Grid.
​
Legal Basis for Processing Personal Data (GDPR)
We process your personal data based on the following legal grounds:
-
Your consent, which you may withdraw at any time.
-
The necessity for the performance of a contract with you.
-
Compliance with a legal obligation.
-
Our legitimate interests, provided these do not override your fundamental rights and freedoms.
​
Safeguarding and Securing the Data
We are committed to securing your data and keeping it confidential. We have done all in our power to prevent data theft, unauthorized access, and disclosure by implementing the latest technologies along with being certified to ISO 27001, which help us safeguard all the information we collect.
Links to Other Websites
Our website may contain links that lead to other websites. If you click on these links we are not held responsible for your data and privacy protection while visiting those other websites. Make sure to read the privacy policy documentation of the website you go to from our website.
Your Rights Under GDPR
As a data subject, you have the following rights:
-
The right to access - You have the right to request copies of your personal data.
-
The right to rectification - You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
-
The right to erasure - You have the right to request that we erase your personal data, under certain conditions.
-
The right to restrict processing - You have the right to request that we restrict the processing of your personal data, under certain conditions.
-
The right to object to processing - You have the right to object to our processing of your personal data, under certain conditions.
-
The right to data portability - You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
-
The right to withdraw consent at any time - Where we are relying on your consent to process your personal data, you have the right to withdraw your consent at any time.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email detailed at the start of this policy.
​
Children's Privacy
Our services do not address anyone under the age of 16. We do not knowingly collect personally identifiable information from children under 16. If we discover that a child under 16 has provided us with personal information, we will delete such information from our servers immediately. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to take necessary actions.
Data Location
Your information, including personal data that we collect from you, is stored within the United Kingdom.
Data Retention
We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, subject to your right to request that we delete your data. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
In cases where there is a valid business reason we may retain data longer than the minimum required, unless you specifically request your data be deleted.
Sharing Information
Whenever we disclose your information to a third party, we always do so in accordance with this privacy statement and any data protection regulations. Additionally, we make sure that these third parties only use your information as directed by us.
Third parties that we share information with would be our suppliers for example accountants. We do not sell or share your information to third parties for marketing purposes.