Detection
We monitor logs, error signals, and security events 24/7. Alerts are triaged by our on-call team within 15 minutes.
Containment
On confirmation of a breach, we follow our incident-response playbook: isolate, assess, preserve evidence, communicate internally, notify the DPO.
Customer notification
We notify affected customers without undue delay and in any case within 48 hours of confirming a breach. The notification includes the nature of the breach, affected data, likely consequences, and mitigation steps.
ICO notification
Where required under Art. 33 UK GDPR, we notify the ICO within 72 hours of becoming aware.
Post-incident review
Every breach triggers a written post-incident review. Findings feed into security controls, training, and sub-processor reviews.