The General Data Protection Regulation (GDPR) comes into force on 25 May 2018 and affects all organisations that process personal data.
Taxfiler is fully committed to GDPR and will support our customers with their own GDPR compliance obligations regarding their client data held within Taxfiler.
The General Data Protection Regulation (GDPR) introduces stricter controls on how organisations collect and process personal data. The regulation outlines six key principles for organisations that process personal information. These are that data shall be:
We constantly review the security measures that we have in place to protect your client data. This includes both internal and external testing to check for vulnerabilities and ensure that our systems are resistant to both accidental and deliberate data leakage.
We have verified that partners who help us to deliver our services are fully compliant with GDPR and have adequate standards of data security and privacy protection. We have ensured that processes are in place to review these services regularly and to ensure that all such services continue to be of the required high standard.
We have carried out a detailed review of all product areas to identify areas for improvement and have scheduled enhancements to our software which will make GDPR compliance easier for our users in future. For further information about some of the proposed updates see below.
We use secure data centres based solely in the UK. Data is backed up regularly and these are encrypted and stored only in the UK. Old backups are completely destroyed after a few days as part of a defined backup cycle.
Amending your client data in Taxfiler is easy. Using our reporting and search tools you can quickly find and review client records and you will be able to keep your client personal data up to date while ensuring you have accurate records of historical tax return data.
When clients ask for their information to be removed from your records, they have the right to have their data deleted as fully as possible. Finding and deleting all data for a client can be done quickly in Taxfiler. Deleting a client will remove all data including tax returns, notes and attachments for that client.
If you close your account with us then you have the option of retaining client data for continued access or asking us to remove all your data from our system. If you wish to retain your data on our system you will continue to have access to review and delete client data to ensure you can meet your ongoing GDPR obligations.
We will be rolling out enhancements to our software over the coming months to make it simpler to adhere to GDPR best practices. These new features include the following: