Charlie is GDPR compliant

This page explains how:

Charlie being compliant means that we…

Have full awareness of where your data is being held

Ensure you have the right to view, amend, export or delete any information that we hold on your behalf

Ensure that only those who require access to your data are able to

Ensure that consent is given during the sign up process for all that use Charlie and allowing you to withdraw this at anytime

You’re able to review the exact standards we hold ourselves to via our Privacy Policy. Our Data Protection Officer is on hand should you have any concerns, they can be contacted at [email protected].

Your data, stored securely

Charlie is the most secure way to store your team’s sensitive personal information. We regularly review how we can most securely store your data. We protect it in three dimensions:

What we’re storing

Charlie can store all your important personal and company information. Individual logins mean that your team members can keep their details accurate and up-to-date, ensuring you meet your legal obligations as an employer.

How we’re storing it

Your data is stored within the EEA (European Economic Area). We encrypt your data both at rest and in transit, and our site and storage processes are architected for security. See our Security Measures page for more details.

Who can access it

Within our system you are able to set permission levels for all employees to restrict access to sensitive data. Grant visibility to those that need it, while keeping sensitive data private.

See the complete list of permissions.

Internal security and contracts

Data Protection Agreement

If you require an amendment to your contract, please contact us at [email protected].

Internal security at Charlie

We are both Cyber Essentials certified and ISO 27001:2013 certified.

Everyone who works at Charlie has been security vetted. We make sure there are several layers of controls that individuals must go through to access customer data.