Enterprise-grade security

Your data, locked down

Security isn't an afterthought — it's baked into every layer of the platform. Encrypted connections, UK-hosted infrastructure, strict access controls, and round-the-clock monitoring as standard.

Security at a glance

How we keep your business safe
1
Encrypted everywhere
TLS 1.2+ in transit, AES-256 at rest. Your customer and transaction data is never exposed.
2
UK-hosted infrastructure
Stored in ISO 27001-certified UK data centres. Fully compliant with UK data residency requirements.
3
Continuous monitoring
Automated alerts, regular audits, and proactive vulnerability management — 24/7.

Data Protection & GDPR

Omni Tend Ltd (Company Number: 15219162) is fully compliant with the UK GDPR and Data Protection Act 2018.

  • Data controller: You retain full control of your business data at all times
  • Data processor: We process data strictly on your behalf and under your instructions
  • Data Processing Addendum: Available for all customers — read our DPA
  • Privacy by design: Data protection is built into our product development process
  • Data portability: Export your data at any time in standard formats

For full details, see our Privacy Policy and SaaS Privacy Policy.

Payment Security

All payments run through Stripe. We never store, process, or transmit card data on our servers.

  • PCI DSS compliance: All payment processing is handled by Stripe, a certified PCI DSS Level 1 service provider
  • Tokenisation: Card details are tokenised by Stripe before reaching our platform
  • 3D Secure: Supported for additional cardholder verification where required
  • No card data storage: Your customers' payment details never touch our infrastructure

Infrastructure & Hosting

Enterprise-grade cloud infrastructure, designed for reliability and security.

  • UK data centres: Customer data is stored in the United Kingdom
  • Network security: Firewalls, intrusion detection, and DDoS protection at every layer
  • Environment isolation: Each customer's data is logically separated
  • Regular patching: Operating systems and dependencies are kept up to date with security patches

Uptime & Reliability

Downtime costs you money. We take that seriously.

  • 99.9% uptime target: Our infrastructure is designed for high availability
  • Automated failover: Critical services are replicated for continuity
  • Regular backups: Data is backed up automatically with point-in-time recovery
  • Disaster recovery: Documented procedures to restore service in the event of an outage

Access Control & Authentication

Access to your data is tightly controlled — only those who need it, get it.

  • Role-based access: Staff accounts have configurable permission levels
  • Secure authentication: Passwords are hashed using industry-standard algorithms
  • Session management: Automatic session timeouts and secure token handling
  • Audit logging: Key actions are logged for accountability and troubleshooting
  • Internal access controls: Omni Tend staff access to customer data is strictly limited, logged, and reviewed

Responsible Disclosure

Found a vulnerability? We want to know. Report it to security@omnitend.com and we'll investigate promptly.

Questions?

If you have any questions about our security practices, please get in touch or email us at hello@omnitend.com.

Frequently asked questions

Common questions about security and data protection

Is my data secure with Omni Tend?

Yes. All data is encrypted in transit with TLS 1.2+ and at rest using AES-256 encryption. Our platform is monitored around the clock with automated alerts, regular security audits, and proactive vulnerability management. We also enforce strict internal access controls so only authorised personnel can access customer data.

Is Omni Tend GDPR compliant?

Yes. Omni Tend Ltd is fully committed to data protection under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. You retain full control of your business data as the data controller, and we process data strictly on your behalf. A Data Processing Addendum is available for all customers.

How do you handle payment security?

Omni Tend integrates with Stripe, a certified PCI DSS Level 1 service provider, for all payment processing. We never store, process, or transmit card data on our servers. Card details are tokenised by Stripe before reaching our platform, and 3D Secure is supported for additional cardholder verification.

Where is my data hosted?

Omni Tend hosts data with UK based industry leading GDPR compliant cloud providers. Omni Tend ensures that your data is securely stored.

See it for yourself

Book a demo and we'll walk you through how Omni Tend keeps your data secure — while giving you the tools to grow.
Book a demo
© 2026 Omni Tend Ltd
Book a demo
Company
Resources
Use cases
Privacy PolicyTerms of UseCookies
support@omnitend.com

This website uses cookies

We use cookies to give you the best experience on our site. By continuing, you agree to our use of cookies.

Learn more