Where data is stored?
Customer data is stored in the UK only, within secure, access-controlled infrastructure.
Protecting customer data with UK-based storage, encryption, access controls, monitoring, and GDPR-aligned practices.
GAIN Tax Uses Advanced Security Controls, Strict Access Governance, Encryption, Monitoring, Incident Response Procedures, And GDPR-Aligned Data Handling Practices To Protect Customer Data Across The Platform.
Customer data is stored in the UK only, within secure, access-controlled infrastructure.
Data is encrypted both at rest and in transit using secure encryption and transport protocols.
Access to client files is restricted to authorized customer users and, where necessary, a limited number of authorized GAIN Tax personnel for support, maintenance, or security purposes.
GAIN Tax uses role-based access controls to ensure users can access only the data and functions required for their role.
GAIN Tax maintains logging and audit trails for key system activity, access events, and security-relevant operations to support monitoring, investigation incidents, and accountability.
Customer data is retained only for as long as necessary to provide the service, comply with legal obligations, and meet operational requirements. Data is deleted or securely removed in accordance with defined retention and deletion procedures.
GAIN Tax supports GDPR-aligned handling of customer data, including processes for access, correction, export, and deletion requests, subject to applicable legal and regulatory requirements.
GAIN Tax maintains a subprocessor list, available on request.
A Data Processing Addendum is available on request.
Customer data is not used to train public or shared AI models.
GAIN Tax maintains incident response procedures for the timely identification, containment, investigation, remediation, and notification of security incidents where required.
GAIN Tax maintains backup and disaster recovery measures to support resilience, business continuity, and restoration of critical data and services.