Data Protection Policy

George Naylor Associates Ltd. takes online security very seriously and we adopt stringent procedures to safeguard our own and our client's data. We are fully compliant with Recently updated GDPR best practices.

GNA Ltd is registered with the information commissioner's office as a data controller.

Our software services are secured as follows:

  • Server environments are virtual private cloud (VPC) instances and require multi-factor authentication to access
  • Client data is hard-separated from one-another using VPC instances
  • All employee and client data are stored securely in a single-tenanted PostgreSQL instance
  • Backups are performed daily and are protected by 2048-bit PGP encryption
All end-user access to our web applications requires HTTPS