Data Security

 Click on the icon to listen to an audio recording of this page

As an ISO 27001 certified and level 2 PCI DSS (version 3) compliant company, data security is of paramount importance to VST. As we are entrusted with highly sensitive data, we have implemented and continually enhance a range of robust security measures to ensure such data is handled in a secure and professional manner.

Data Security

security-certIn 2009, VST become the first transcription company in the UK to be awarded the ISO 27001:2013 standard, which relates to the security of all forms of data, documents, communications, conversations, messages, recordings and photographs received or processed by the business. Also, in 2012 VST became the first alternative format transcription company to become Payment Card Industry Data Security Standard (PCI DSS) compliant. This standard reflects our commitment to handling customer data in the most secure and structured manner possible.


Site Security

Our building is accessed by pass holders only and our manned reception operates a strict visitor badge control. The areas in which sensitive data is processed have restricted access for authorised personnel only.

24 Hour Monitoring
The premises are patrolled 24 hours a day by on-site security guards.

All production and printing areas are constantly monitored by CCTV.


Personnel

We have a number of employment policies in place that ensure all personnel abide by our strict code of conduct relating to security and confidentiality. New employees are required to undertake comprehensive pre-employment checks, including Disclosure (formally CRB), credit, financial sanction, identity and residential verifications. Additionally, all references and work histories are verified for up to seven years.


Server Network

All files produced by VST are held on a secure server located in a locked room with controlled and restricted access by key fob. Access to the file server is via staff passwords, which are changed every 30 days.

External mail and data are filtered through a separate firewall and a live update virus scanner. Data is backed up daily off the premises and we operate a daily backup separately, which is also offsite.

System Security
VST uses comprehensive Intrusion Detection and monitoring systems supported by penetration test to ensure the integrity of our systems.

Continuity Of Production

In case of an event that requires the evacuation of VST’s premises, we have access to an alternative site. Whilst it is located only five miles away, our contingency site operates from a separate utility and telecom grid.

We have in place a comprehensive disaster recovery programme, which would be fully operational within three working days, should it be required.


A comprehensive report on all VST security measures is available on request.

Data Security

Comments are closed.