Compliance centre
We understand the importance of due diligence before selecting a trusted IT & security partner. You can download our publicly classified policies and review some FAQs below.
Policies
Our public policies are available here. The majority of our policies are contained in this document, although some internal only policies and procedures also exist. Internal only policies are not shared.
Frequently Asked Questions (FAQs)
Are you a registered company?
Yes, Jonco IT & Security is a company registered in England & Wales.
Our company number is 16343456.
Are you a registered with the Information Commissioners Office (ICO)?
Yes, Jonco IT & Security is registered with the ICO.
Our registration reference is ZB891882 and you can download our certificate here.
Are you certified for Cyber Essentials or Cyber Essentials+?
No, we are not currently certified. We are familiar with the Cyber Essentials and Cyber Essentials+ clauses and aim to meet a number of the requirements.Are you certified ISO 27001?
No, we are not currently ISO 27001 certified. We are familiar with ISO 27001 and our policies meet the requirements of a number of the ISO 27001 clauses.Where is customer data hosted?
The majority of our data is hosted in Microsoft's UK data centres, with additional backups held at the director's home in England.
Customer data will not be transferred out of the UK without prior written consent of the customer.
Our accountancy package is hosted in Ireland and contains details for your accounts contact, invoices, estimates / quotes, and payment status.
What conferencing tools do you use?
Microsoft Teams is our default application for chat and conferencing. If your organisation uses Zoom or Google Workplace we will be happy to join your meetings on those tools.How long do you retain customer data?
Customer contact details will be kept for seven years after our last work together, unless you request deletion sooner. Note that if we have a regulatory need to keep your data for longer we will keep the minimum amount of data necessary to meet our obligations.
Reports produced for customers will be stored for three months after the customer has confirmed receipt and invoices have been paid. Alternatively, customers may request deletion immediately after they have confirmed receipt and your invoice has been paid.