ThenMedia understands and appreciates the requirements of GDPR 2018. It stores personal data securely and treats it with respect at all times.
Anyone wishing to view what ThenMedia is storing about them should make a data access request by emailing: firstname.lastname@example.org.
ThenMedia servers are regularly backed-up at two offsite locations in Cheshire.
Interactive sites (where a user can sign-in) use session cookies to monitor the interaction and deliver data to the user without repeated requests for authorisation. Further information detailing how we store your data is included in our Data Security Policy below.
This document explains how and where your data is stored when you use ThenMedia Cloud, or a ThenMedia product such as Loudhailer or Chrestos. The information detailed in this document also applies to any bespoke project created by ThenMedia which uses our cloud system at its core.
ThenMedia Limited operates a number of virtual & physical servers located at a data-centre in London. Our core cloud server features redundant power supplies along with battery backup and a generator. The hardware itself is located in a secure facility with access closely monitored and strictly controlled.The servers we operate are owned and managed by ThenMedia Limited.
No third party companies or organisations have access to our systems. However, it is sometimes necessary for independent data- centre engineers to be given temporary access to perform upgrades or essential maintenance.
Our infrastructure is protected by industrial strength firewalls, with access to commonly exploited ports such as FTP (21) and SSH (22) restricted to ThenMedia's static IP addresses.
All cloud data is managed using MariaDB and accessed via a CMS (content management system) developed by ThenMedia using an NGINX/PHP architecture. This infrastructure runs on a customised installation of Linux, chosen for its security, reliability and speed.
Captured data is stored using MariaDB and transmitted securely via 256 bit SSL. All our security certificates are independently A-rated by Qualys. They feature super-strong ciphers and 4096bit Diffie-Hellman keys for enhanced security.
By default, uploaded customer data is restricted to everyone except the cloud administrator. The cloud administrator will be allocated as your contract is finalised. Once allocated, this user can sign into our cloud using an encrypted password. They are then free to create additional users and grant permissions as required. ThenMedia cannot read any passwords, although we can reset them if required.
Once stored, all customer data is backed up securely at two independent locations. Backups are held in accordance with our GDPR policy (above), and are stored on NAS devices using RAID (redundant array of independent disks).
We take every care to ensure that your data is stored safely and securely. However, ThenMedia accepts no liability for any losses incurred through loss of data. Please make sure you keep local backups of all data you upload to our servers.
Access to customer data is logged and irregular sign-in requests are reported. Multiple incorrect attempts to access data will result in an IP block.
For more information on how we manage and protect your data, please email email@example.com or alternatively phone 01244 478727.
ThenMedia alongside Stripe to enable online payments to business customers. Read our PCI Compliance Policy.
How ThenMedia manages and protects your personal data. Includes GDPR Policy.
How ThenMedia stores and backs up your website and data. Includes Backup Liability.
This policy applies to support & training for projects built for communities & charities.
Prices for building, hosting & promoting websites. All prices are exclusive of VAT.
Get all the latest news and updates from our Development Team.
We will never share your email
address with a third party