You can read a summary of the Thrive-Online data security measures here: TOL Security Statement

CyberEssentials logo

Thrive is delighted to have been re-certified to the Cyber Essentials Plus accreditation by Wolfberry in December 2017.

Cyber Essentials is a government backed scheme that aims to help organisations implement basic levels of protection against cyber-attack; demonstrating to their customers that they take cyber security seriously.

The scheme is available at two levels:

1. Cyber Essentials: an independently verified self-assessment. Thrive carried out an assessment against the five basic security controls and a qualified assessor then verified the information provided.

2. Cyber Essentials PLUS: having achieved the basic level of accreditation, Thrive then applied for the higher level of assurance awarded by the PLUS version. A qualified and independent assessor examined the same five controls, testing that they work in practice by simulating basic hacking and phishing attacks.

The five basic controls within Cyber Essentials were chosen because, when properly implemented, they will help to protect Thrive against a range of internet-based attackers. The five controls are:

* Boundary firewalls and internet gateways
* Secure configuration
* Access control
* Malware protection
* Patch management

As part of the Cyber Essentials Best Practice, Thrive will aim to undertake the Cyber Essentials re-accreditation each year.

Backing for the Cyber Essentials accreditation from the government is strong. From 1st October 2014, Cyber Essentials became a minimum requirement for bidding for some government contracts which involve handling personal information and providing certain ICT products and services.