Security and Compliance

At Reference Point Computers Ltd, we take the security of our systems and your data seriously. Whether you're using our software platform, hosting services, or API integrations, you can be confident that your data is handled with care and responsibility.

Key Practices:

• Data Encryption – All sensitive data is encrypted in transit and at rest using industry-standard protocols (TLS 1.2+ / AES-256).

• Access Control – Systems are secured using role-based access control (RBAC) and least-privilege principles.

• Infrastructure – Our servers are hosted in secure, ISO 27001-certified UK/EU data centres.

• Audit Logging – All system access and sensitive operations are logged and monitored.

• Regular Reviews – We routinely review our systems, policies, and access controls to ensure ongoing compliance and security.

We also maintain a robust Incident Response Plan (available on request) in case of any unexpected event or breach.

If you are an Amazon seller using our services, we comply with Amazon's Selling Partner API (SP-API) data protection requirements.

Data Handling

We act as a data processor on behalf of our clients. This means we do not own or sell customer data — we process it only as instructed by our clients and only for the purposes of order fulfilment, returns, and related services.

What we do:

• Handle MFN shipping data from platforms like Amazon, eBay, and OnBuy

• Pass essential delivery details to couriers for successful fulfilment

• Securely store order data only as long as necessary for business or legal purposes

What we don’t do:

• We don’t use personal data for marketing.

• We don’t share or sell data to third parties.

• We don’t access more data than absolutely necessary.

You can read more in our Privacy Policy.