Enterprise-Grade Security for Your Team's Benefits
We take the security of your employee data seriously. PerkStation is built with industry-leading security practices to keep your information safe and your business compliant.
How We Protect Your Data
Security is built into every layer of PerkStation, from infrastructure to application design.
Data Encryption
All data is encrypted in transit using TLS 1.3 and at rest using industry-standard encryption. Your sensitive information is never stored in plain text.
Secure Authentication
Industry-standard password hashing protects credentials. Sessions use HTTP-only, secure cookies that cannot be accessed by scripts.
Access Controls
Role-based permissions ensure employees only see their own data. Complete tenant isolation means your data is never visible to other companies.
Infrastructure Security
Hosted on secure, professionally managed infrastructure within the UK. Regular security patches and updates keep systems protected.
GDPR Compliance
Fully compliant with UK GDPR. We support all data subject rights including access, rectification, and erasure requests.
Continuous Monitoring
Our systems are monitored around the clock for security threats. Automated alerts and incident response procedures protect your data.
Our Data Protection Commitments
We believe in transparency about how we handle your data.
We Only Collect What We Need
- •Basic profile information for your account
- •Usage data to improve your experience
- •No selling of personal data to third parties
Your Data Stays Protected
- •Encrypted storage and transmission
- •Regular security assessments
- •Trained staff with access controls
You Stay in Control
- •Export your data at any time
- •Request deletion when you leave
- •Manage your communication preferences
We Vet Our Partners
- •Data processing agreements with all vendors
- •UK/EU based processors where possible
- •Regular compliance reviews
GDPR Compliance
PerkStation is fully compliant with UK GDPR and the Data Protection Act 2018.
As a data processor, we work with your company (the data controller) to ensure proper handling of employee information. We maintain clear data processing agreements and support all your obligations under data protection law.
Your employees can exercise their data subject rights at any time, including the right to access, rectify, or delete their personal data.
Built for Business Requirements
We understand that businesses have specific security and compliance needs.
Security Features
- SSO integration available (SAML, OAuth)
- Custom data retention policies
- Audit logs and admin activity tracking
- IP allowlisting options
Compliance Support
- Data Processing Agreement (DPA) provided
- Security questionnaire support
- Regular penetration testing
- Dedicated account management
Security FAQs
Where is my data stored?
Your data is stored on secure servers located in the United Kingdom. We use professionally managed hosting with regular backups and disaster recovery procedures.
Who can access my data?
Only you and authorised personnel at your company (such as HR administrators) can access your personal data. Our support team may access data only when necessary to help you, and all access is logged.
How long is data retained?
We retain your data only for as long as necessary to provide our services. When your account is closed or your employment ends, your data is deleted or anonymised within 90 days.
What happens if we cancel our subscription?
If your company cancels their PerkStation subscription, you will be notified in advance. Your data will be retained for a short grace period, then securely deleted. You can request an export of your data before deletion.