Will I still own my uploaded data?

Absolutely… 100%. Your data sets can be deleted at any time through your campaign dashboard. No one will be able to see your existing uploaded data, and it will not be used by a third party.

Please Note: This service is not available yet

Join Free... Search Free...

Where will my uploaded data be stored?

Your uploaded data will be held on servers within a London UK data centre.

Please Note: This service is not available yet

Join Free... Search Free...

How secure is my data on MyOpenData?

The following security aspects are employed, used, considered or of note in relation to the MyOpenData platform.

External factors

The system will be hosted on a dedicated Virtual Private Server (VPS), which means that the files, database, and operating resources are for the sole purpose of MyOpenData, and are not shared with any other customers or partners.

The VPS will run within Amazon’s secure and redundant infrastructure, in a London UK data centre. Their data centres employ strong physical security.

The VPS itself and Amazon’s infrastructure will use a firewall, to ensure that only the system and technical services necessary to run the platform are accessible and open. This helps protect against malicious actors gaining access to things they shouldn’t. The VPS runs on the Linux open source operating system, and will have regular security updates applied automatically, and other system updates applied regularly as necessary. The system will enforce access to it using secure connections - HTTPS - the ‘green padlock’ seen in web browsers. This ensures that the data transferred between the server and the user is encrypted, to prevent eavesdropping by rogue networks, “man-in-the-middle” attacks, and other vectors.

Internal factors

The system will ensure that user’s login credentials (passwords) are stored securely in the database using a one-way hashing process. This means that the passwords cannot be decrypted, and will pose a serious barrier to any party who wished to crack them via brute-force, should they ever end up gaining access to the raw database. This raw access is mitigated by other factors. Every user in the database can have different permission levels assigned, to ensure they can only access the parts of the system that is deemed necessary.

User access can be disabled by administrator-level users at any time.

An appropriate browser Content Security Policy (CSP) is used.

Other

The system will include features to prevent against Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) attacks.

Is the appended named data MyOpenData Limited supplies GDPR compliant?

For any purchase undertaken on behalf of our client which involves appended data provided by our partner, MyOpenData Limited will act as our partners Data Processor. This data will be categorised and handled in accordance with MyOpenData ISO27001:13 information security procedures. Our partner ensures that data being transferred to MyOpenData is done so in accordance with appropriate Information Security and GDPR principles and that these principles have been observed and followed.

(Let's be transparent: Yes, the supplier has agreed that they are responsible for the GDPR compliancy of any appended data they supply.)

Join Free... Search Free...

Is MyOpenData Limited GDPR Compliant?

MyOpenData Limited is GDPR compliant. Agreement to receiving information and marketing communications is part of our quoting and buying process, and clients are given the opportunity to consent to the continued storage and processing of their details whenever communications are sent out. Please see our section on Privacy for full details.

(Let's be transparent: Yes, we are.)

Join Free... Search Free...

Is MyOpenData Limited GDPR compliant for any data I upload to MyOpenData?

For any project undertaken on behalf of our client which involves data provided by our clients about their clients, MyOpenData Limited will act as our client’s Data Processor. This data will be categorised and handled in accordance with MyOpenData ISO27001:13 information security procedures. Our client ensures that data being transferred to MyOpenData is done so in accordance with appropriate Information Security and GDPR principles and that these principles have been observed and followed.

(Let's be transparent: By Law, members are responsible for the GDPR compliancy of their own data.)

Please Note: This service is not available yet

Join Free... Search Free...

Other categories