How does ParentPay guard against information security and cyber threats?
Here at ParentPay we employ a dedicated security team of qualified security specialists and we operate a comprehensive suite of security controls – on a 24/7 basis. We have established an industry-leading programme to manage information security risk and compliance, and this is something that we are very proud of.
Our commitments and investment in this space are second to none and we are proud to set the precedent for security in the school payments marketplace. We strive to be at the forefront, setting the bar for our competitors to follow suit and keep our industry protected in the mission for information security.
Our position as a leader in information security is independently verified and continually monitored – we are the only ‘A’ rated supplier listed within the independent scoring platform. Along with our ‘A’ rating, we are:
- ISO 27001 Certified – this has been certified by a UKAS accredited certification body.
- PCI-DSS Level 1 Certified (the highest level of certification)
- Cyber Essentials Plus Certified.
We are audited by several independent specialist third parties at least four times per year.
ParentPay is fully compliant with data protection law, including the General Data Protection Regulation (GDPR), and the UK Data Protection Act (DPA).
Perhaps most importantly, in the event of any incident, we operate comprehensive and highly regarded incident response procedures – including preparations, identification methods, investigation phase, forensic data collection, containment measures, remediation, root cause analysis, lessons learned, and full incident reporting.
Our response plans consider communication requirements throughout, and Data Controllers are fully and promptly informed in the event of any data breach. Our response processes are properly trained and tested in detail and we are acutely aware of our various relationships with third parties and data subjects and the range of notification obligations as a result.
For existing or prospective customers that wish to know more about our exhaustive suite of security controls, please ask for the ‘ParentPay Cyber Security Suite’ Infographic.