Circle Interactive is a company with strong expertise in managing sites handling a wide range of sensitive and confidential data. Security, confidentiality, and data-protection are at the heart of our thinking and we maintain strong security procedures around access to all our servers and data. 
 
We ensure amongst other things that systems are secure by design, strong passwords are in use by all our users, and all network traffic takes place over Transport Layer Security (TLS)*. We only use UK hosting with extremely high physical data-centre security and some of our servers are PCI scanned to ensure compliance with e-commerce standards. 
 
Circle operates systems that pass regular PCI Compliance testing and penetration testing by Barclays Bank and the Department of Health amongst others. Your system will have the same levels of security.
 
Circle are working towards ISO 27001 accreditation. We've been through a major review of our policies and practices with a highly regarded security consultancy and are now working towards external audits. We expect this accreditation to be in place in early 2018 and certainly well ahead of the GDPR coming into force.
 
 
*Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), both frequently referred to as "SSL", are cryptographic protocols that provide communications security over a computer network.. The connection is private (or secure) because symmetric cryptography is used to encrypt the data transmitted.