PGMBM

TRUST CENTRE

At PGMBM, we secure and protect the information of more than one million clients worldwide with absolute transparency and 24/7 support.

For us, transparency is key. It is one of PGMBM’s core values and we are committed to ensuring this is true in all aspects of our business, including our privacy and security.
We are committed to maintaining and improving security information for our clients and staff to ensure regulatory and legal requirements are met.
We take accountability. We can effectively and efficiently manage and protect our clients’ personal data by ensuring we have a thorough understanding of the risks associated with sharing information online.
We continuously assess and manage our internal policies, our network security, and our security operations with our clients’ best interests in mind so they can rest assured that their data is being kept safe and secure.
Here are some of our most frequently asked questions surrounding data and privacy:

PGMBM is committed to protecting the information that we hold from misuse, loss, or unauthorised access.  

We do this by having a range of appropriate technical and organisational measures in place. These include encrypted systems to hold data securely in both electronic and physical form, appropriate confidentiality arrangements and information handling policies where appropriate with those who have access to the information we hold (for example our staff, contractors, service providers and co-counsel) and taking swift and effective steps to identify and contain any suspected information losses.

We take our responsibilities under data protection legislation seriously.  We are certified in Cyber Essentials for Information Security. 

Currently, we are working towards certification with the ISO 27001 standard for Information Security to ensure we have the official accreditation to match the values we hold.  

Yes, all data shared is encrypted both at rest and in transit to ensure you are kept safe at every step of the journey.

PGMBM uses a corporate password management tool to both generate secure passwords that adhere to our password policies. We also use multi-factor authentication wherever available.

We enforce a suite of Information Security policies consistent with the ISO 27001 framework, including but not limited to:

3rd Party IT Delivery and Monitoring Policy

Acceptable Use Policy

Building Access Security Procedure

Business Continuity Policy and Framework

Change & IT Governance Approach

Clear Desk Policy

Crisis Management Plan

Data Protection Policy

Identity and Access Management Policy

Incident Management Policy

Information Asset Process

Information Classification Policy

Information Security Policy

Information Security Risk Register

IT Anti-Virus Policy

IT Encryption Policy

IT System Data Retention

Network Access Controls and Services Procedure

Network Firewall Implementation Process

Record Keeping and Retention Policy and Process

Remote Working Guidance

Removable Media Guidelines

If you would like any more information on any of the topics discussed on this page, please contact our specialist team on [email protected]

PGMBM (a trading name of PGMBM Law Ltd) SRA License Number 512898.

PGMBM is authorised and regulated by the Solicitors Regulation Authority and complies with the Solicitors Code of Conduct, a copy of which can be located here.
VAT No: 974 7183 77

 

CONNECT WITH US

pgmbm trust center

At PGMBM, we secure and protect the information of more than one million clients worldwide with absolute transparency and 24/7 support.

For us, transparency is key. It is one of PGMBM’s core values and we are committed to ensuring this is true in all aspects of our business, including our privacy and security.
We are committed to maintaining and improving security information for our clients and staff to ensure regulatory and legal requirements are met.
We take accountability . We can effectively and efficiently manage and protect our clients’ personal data by ensuring we have a thorough understanding of the risks associated with sharing information online.
We continuously assess and manage our internal policies, our network security, and our security operations with our clients’ best interests in mind so they can rest assured that their data is being kept safe and secure.

Here are some of our most frequently asked questions surrounding data and privacy:

PGMBM is committed to taking all reasonable and appropriate steps to protect the personal information that we hold from misuse, loss, or unauthorised access.  

We do this by having a range of necessary technical and organisational measures in place including, but not limited to, encrypted systems to hold your personal data securely in both electronic and physical form. 

All our Partners, staff, third party services, and cross borders who have or may have access to your personal data, are instructed and subjected to confidentiality obligations.  

We take all the appropriate measures to maximally secure personal information and to deal with any suspected data breach.  

PGMBM are compliant with the GDPR regulations for Data Protection and are certified in Cyber Essentials for Information Security. 

Currently, we are working towards certification with the ISO 27001 standard for Information Security to ensure we have the official accreditation to match the values we hold.  

Yes, all data shared is encrypted both at rest and in transit to ensure you are kept safe at every step of the journey.

PGMBM uses a corporate password management tool to both generate secure passwords that adhere to our password policies. We also use multi-factor authentication wherever available.

We enforce a suite of Information Security policies consistent with the ISO 27001 framework, including but not limited to:

3rd Party IT Delivery and Monitoring Policy

Acceptable Use Policy

Building Access Security Procedure

Business Continuity Policy and Framework

Change & IT Governance Approach

Clear Desk Policy

Crisis Management Plan

Data Protection Policy

Identity and Access Management Policy

Incident Management Policy

Information Asset Process

Information Classification Policy

Information Security Policy

Information Security Risk Register

IT Anti-Virus Policy

IT Encryption Policy

IT System Data Retention

Network Access Controls and Services Procedure

Network Firewall Implementation Process

Record Keeping and Retention Policy and Process

Remote Working Guidance

Removable Media Guidelines

If you would like any more information on any of the topics discussed on this page, please contact our specialist team on [email protected]

PGMBM (a trading name of PGMBM Law Ltd)

SRA License Number 512898

PGMBM is authorised and regulated by the Solicitors Regulation Authority and complies with the Solicitors Code of Conduct, a copy of which can be located here.