On 25th May 2018 the EU General Data Protection Regulation (GDPR) comes into effect, and will replace the current Data Protection Act.
Voyager Systems Ltd - Statement of Compliance
The VIA Voyager System is hosted securely on Microsoft Azure’s network of data-centres within the EU. All back-ups are encrypted and stored with Microsoft Azure across multiple locations, also within the EU. Microsoft Azure is fully GDPR compliant and provide GDPR related assurances in their contracts. Further information can be found here: https://www.microsoft.com/en-us/TrustCenter/Privacy/gdpr/
The connection to VIA Voyager uses TLS 1.2 (Transport layer security) which ensures end to end encryption from the users’ machine onto the Microsoft Azure gateway. This is fully authenticated ensuring third parties cannot intercept.
The VIA Voyager credit card authorisation service is provided by PXP who are fully GDPR compliant. (PXP is a Kalixa Payments Group company and have a 27 year track record in the card payment processing sector). The connection between the user’s computer to Microsoft Azure and the connection between PXP to Microsoft Azure both use TLS 1.2.