Last updated: April 2026
1. Data Controller
For SaaS deployments (Shield Basic and default for Pro/National), EnglandShield acts as data processor and manages the infrastructure. For hybrid deployments (Shield Pro/National), the customer controls their database while EnglandShield processes data in transit. For air-gapped deployments (Shield National only), the customer is both data controller and processor with zero EnglandShield access.
2. Data We Collect
- Account information (name, email, role)
- Property and repair data submitted by users
- IoT sensor readings (temperature, humidity, damp)
- Compliance documentation and audit logs
- Usage analytics (anonymised)
3. Data Sovereignty
In SaaS mode, data is hosted on UK-based Railway infrastructure managed by EnglandShield. In hybrid mode, your database stays on your infrastructure. In air-gapped mode, the entire stack runs on your premises with no external connections.
4. Your Rights (GDPR)
You have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data.
5. Security
Enterprise-grade security across all deployment modes: MFA, RBAC, CSRF protection, httpOnly cookies, encrypted connections, and immutable audit logging.