Security & data protection
Enterprise-grade security built in. Your business data is safe, backed up and always in the UK.
Innowave Systems Ltd
Infrastructure and hosting
Total Tradesmen runs on Microsoft Azure in UK data centres. Your data never leaves the United Kingdom. We benefit from Azure's enterprise-grade physical security, redundant infrastructure and ISO 27001 certification.
Data encryption
All data in transit is encrypted using TLS 1.2+ (HTTPS). Data stored in our databases is encrypted at rest using AES-256. Payment data is handled exclusively by Stripe: PCI DSS Level 1 certified.
Access controls
Total Tradesmen uses role-based access control (RBAC). Each user is assigned a role (Admin, Manager, Staff or Engineer) controlling what they can see and do. All sessions are authenticated and time-limited.
Backups and recovery
Your data is automatically backed up every day to a separate UK Azure region. We maintain strict recovery point objectives to minimise any potential data loss in the event of an incident.
UK data residency
All customer data, job records, invoices and business information are stored exclusively in the United Kingdom. This ensures compliance with UK GDPR and gives trade businesses full confidence their data stays under UK jurisdiction.
GDPR and compliance
Total Tradesmen is designed and operated to comply with UK GDPR and the Data Protection Act 2018.
Responsible disclosure
If you discover a security vulnerability, please report it responsibly to support@totaltradesmen.uk. We take all reports seriously and will acknowledge receipt within 24 hours.