The Transcription Agency understands that confidentiality and security of data is paramount to all of our clients.  As a result we take the security and confidentiality of data seriously and enforce this belief throughout our organisation through ongoing training and assessment and review of our policies and procedures surrounding data protection.

Our systems conform to Cyber Essentials and we work in line with the requirements of ISO 27001.

Accreditation and compliance

The Transcription Agency is compliant with the requirements of the General Data Protection Regulation and the Data Protection Act 2018.

We hold the Cyber Essentials accreditation, a government-backed industry supported scheme to help protect against cyber threats.

Furthermore, we are currently in the process of obtaining the ISO 27001 accreditation, which is the internationally recognised standard for information security.



All staff sign non-disclosure agreements, complete a criminal record disclosure, undergo checks to prove eligibility to work in the UK and provide proof of identification.  Furthermore, staff working on our more sensitive, legal and medical projects hold a valid Disclosure and Barring Service certification.

Access rights to data are set dependent upon individual job roles and are reviewed on a regular basis to ensure all access rights remain relevant and appropriate.


Physical site and system security

Physical access to the office premises is restricted to authorised personnel and authorised visitors by prior arrangement only.  Access rights to the IT and transcription equipment is also similarly restricted to authorised personnel only and reviewed on a regular basis to ensure all access rights remain relevant and appropriate.

Devices and servers are maintained and protected with anti-malware software, firewalls and cable locks (where relevant) and receive all required patches automatically.


The Transcription Agency
  • (please note n/a if not applicable)