Applicable Limited

3130 Great Western Court
Stoke Gifford
Bristol, BS34 8HP
United Kingdom
+44 117 915 2200

Applicable Technology Inc.

12620 FM 1960 W
Ste A-4 #283
Texas, 77065
United States of America
+1 281 404 1662

Applicable Limited

Suite 7, Building 9-12
107 Miles Platting Road
Eight Mile Plains
Queensland, 4113
+61 73 2228888

Applicable Singapore

36B Boat Quay
Singapore, 049825

Applicable - Information Security and Privacy

Information Security and Privacy

Applicable are committed to information security and to demonstrate this have achieved certification in or are registered to the following standards:

ISO/IEC 27001:2013

Applicable are amongst the early adopters to achieve this standard in recognition of the commitment to our global standards concerning security best practice. ISO/IEC 27001:2013 is an internationally recognized best practice framework for an information security management system which is essential for our own practices, our partners and our customers. Our certificate can be found here.

ISO/IEC 27001:2013 - Certificate of Registration (PDF)
Cyber Essentials Plus - Certificate of Assurance (PDF)

PrivacyTrust (formerly E-Trust)

This PrivacyTrust certification demonstrates the Applicable website has been reviewed by PrivacyTrust and has met their stringent privacy and data protection requirements. By achieving this PrivacyTrust Seal on signifies that critical data collected, such as home addresses and phone numbers are not exchanged with third parties without prior consent. Our certificate can be found here.

Privacy Shield

Following the EU Central Court of Justice ruling of 16th July 2020 which invalidated the Privacy Shield program as an adequate transfer mechanism for moving personal data from the EU to the US Applicable have implemented the same mechanism of utilisation of Standard Contractual Clauses which it operates for its other operational locations.

Cyber Security Information Sharing Partnership (CiSP)

Applicable are members of CiSP which is a joint industry and government initiative set up to exchange cyber threat information in real time, in a secure, confidential and dynamic environment, increasing situational awareness and reducing the impact on UK business.

Applicable GDPR Statement

General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) effective 25 May 2018 (this includes the UK regardless of the referendum decision to leave the EU). The GDPR impacts every organisation which controls or processes personally identifiable information (Pii). It introduces new responsibilities, including the need to demonstrate compliance, more stringent enforcement and substantially increased penalties than the Data Protection Act 1998 (DPA) which the GDPR superseded.

Applicable have always been and remain committed to the highest standards of information security and privacy taking matters of security and privacy seriously. We place a priority on protecting and managing all Pii in accordance with data protection legislation in all the geographies in which we operate and that required by our contractual obligations with Customers and Data Controllers. We have taken the six principles of GDPR and the accountability that comes with that and integrated the GDPR requirements and necessary approaches in to Applicable’s existing security framework as policy. The existing security controls adopted at Applicable are further expanded based upon ISO/IEC CD 27552 Extension for Privacy Management. This approach ensures that specific privacy risk assessments and management controls are included in the overall technical and organisation controls to deliver privacy by design and default, and to satisfy providing a rigorous approach to GDPR. Contractual arrangements with customers, contractors and suppliers reflect changed legislation. Privacy policies and notices are published on the Applicable website with comprehensive supporting policies, procedures and processes in place to ensure Applicable comply with the GDPR.

Data Protection Officer Contact

The Data Protection Office (DPO) contact for Applicable Ltd is Iain McIvor, Head of Information Security and Privacy. A dedicated email address for contact for data protection matters has been set up

ICO Certificate of Registration