How Tiksom Stays GDPR Compliant

Tiksom Ltd is committed to protecting personal data and complying with the General Data Protection Regulation (GDPR). As a custom software development company, we implement data protection by design and by default across all systems and environments. Privacy and security considerations are embedded into our architecture, development workflows, and operational processes.

Data Location and EU Residency

• All production data is hosted in European Union regions.
• Personal data is not transferred outside the EU without lawful safeguards in place.
• Access to live EU data is restricted, monitored, and contractually controlled.

Data Security and Encryption

• We apply strong technical security measures to protect personal data.
• Data in transit is encrypted using SSL/TLS protocols.
• Data at rest is encrypted using industry-standard AES-256 encryption.
• Databases are hosted with encryption enabled by default.

Access Control and Production Safety

• Role-based access control (RBAC) is enforced across all systems.
• Production access is limited strictly to authorised personnel.
• No offshore access to production EU data is permitted unless legally approved and documented.

Tiksom Ltd treats data protection as an ongoing responsibility, not a one-time exercise. We continuously review our security controls, infrastructure, and internal processes to remain aligned with GDPR requirements and evolving regulatory guidance.

Our goal is to provide clients with confidence that personal data is handled lawfully, securely, and responsibly throughout the full lifecycle of every system we build and operate.