MultiSojourn™ Data Security Policy

Effective Date: July 2026

Version: 1.0

Data Security Policy

At MultiSojourn™, we understand that the information you share with us is personal and important.

Whether you are completing the Global Readiness™ Assessment, purchasing a professional report, booking a consultation, or applying for international opportunities, you trust us with information that deserves careful protection.

Protecting your data is a responsibility we take seriously.

This policy explains how we safeguard your information and our commitment to maintaining a secure environment.

1. Our Security Commitment
We are committed to:
  • Protecting your personal information.

  • Maintaining confidentiality.

  • Reducing security risks.

  • Following recognised data protection principles.

  • Continuously improving our security practices.

Security is built into every stage of our services.

2. Information We Protect

Depending on the services you use, we may protect information including:

Personal Information

  • Full Name

  • Email Address

  • Telephone Number

  • Country of Residence

  • Nationality

Assessment Information

Information submitted through the:

  • Global Readiness™ Assessment

  • Global Eligibility™

  • Global Match™

  • Global Roadmap™

Future Application Documents

Where professional application support is provided, we may securely handle:

  • Passport

  • Academic Certificates

  • Transcripts

  • Curriculum Vitae (CV)

  • Employment Records

  • English Language Test Results

  • Bank Statements

  • Supporting Documentation

Only information necessary for delivering our services is requested.

3. How We Protect Your Information
We apply reasonable technical and organisational measures designed to help protect your information from:
  • Unauthorised access

  • Loss

  • Misuse

  • Disclosure

  • Alteration

  • Accidental destruction

Examples include:

  • Secure website connections (HTTPS)

  • Password-protected systems

  • Restricted staff access

  • Controlled administrative permissions

  • Secure cloud-based service providers (where applicable)

  • Routine software updates

  • Regular review of internal processes

Our security practices evolve as technology and industry standards develop.

4. Access Control

Access to applicant information is limited to authorised personnel who require it to perform their duties.

We follow the principle of least privilege, meaning team members are given access only to the information necessary for their role.

Access permissions are reviewed regularly.

5. Password Protection

Where accounts are available, users are encouraged to:

  • Create strong passwords.

  • Avoid sharing login credentials.

  • Use unique passwords for different services.

  • Notify us immediately if unauthorised access is suspected.

Future enhancements may include optional multi-factor authentication.

6. Secure Storage

Information is stored using trusted service providers and secure systems appropriate to the nature of the information collected.

Where practical, data is protected through appropriate technical safeguards during storage and transmission.

7. Data Transmission
Information submitted through our website is transmitted using secure encrypted connections where supported.

Although we take reasonable steps to protect information during transmission, no method of transmission over the internet can be guaranteed to be completely secure.

8. Employee Responsibility
Every member of the MultiSojourn™ team is expected to:
  • Respect client confidentiality.

  • Handle information responsibly.

  • Follow internal security procedures.

  • Report suspected security incidents promptly.

  • Access information only when authorised.

Protecting client information is everyone's responsibility.

9. Third-Party Providers
We may work with carefully selected service providers to support services such as:
  • Website hosting

  • Analytics

  • Email delivery

  • Appointment scheduling

  • Payment processing (future implementation)

  • Secure cloud storage

These providers are expected to maintain appropriate security standards and handle information responsibly.

10. Data Retention

We retain personal information only for as long as reasonably necessary to:

  • Deliver our services.

  • Meet legal obligations.

  • Resolve disputes.

  • Maintain business records.

  • Improve future advisory services.

When information is no longer required, it is securely deleted or anonymised where appropriate.

11. Security Incident Response

If we become aware of a security incident affecting personal information, we will:

  • Investigate promptly.

  • Take reasonable steps to contain the issue.

  • Assess any potential impact.

  • Notify affected individuals where required by applicable law.

  • Review our procedures to reduce the likelihood of recurrence.

12. Your Role in Protecting Your Information
You can help protect your information by:
  • Keeping your login credentials confidential.

  • Using secure internet connections.

  • Providing accurate contact details.

  • Avoiding public Wi-Fi when submitting sensitive information where possible.

  • Informing us promptly if your contact information changes.

Security is a shared responsibility.

13. Continuous Improvement
Technology changes quickly.

We regularly review:

  • Security practices.

  • Internal procedures.

  • Software updates.

  • Service providers.

  • Emerging risks.

  • Industry guidance.

Our goal is continuous improvement rather than relying on a one-time security approach.

14. Compliance
MultiSojourn™ aims to handle personal information responsibly and in accordance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, where applicable.
15. Contact Us

If you have questions regarding this Data Security Policy or believe your information may have been compromised, please contact us.

MultiSojourn™

Security Team: security@multisojourn.com

Privacy Team: privacy@multisojourn.com

Website: www.multisojourn.com

Our Security Promise™

Every international journey begins with trust.

At MultiSojourn™, we recognise that protecting your information is just as important as providing professional guidance.

We are committed to handling your personal information responsibly, limiting access to those who genuinely need it, continuously improving our security practices, and responding transparently if issues arise.

While no digital system can guarantee absolute security, we strive to apply practical safeguards and recognised best practices to help protect your information throughout your journey with us.

Security Principles™

Everything we do is guided by five core security principles:

🔒 Confidentiality

Your information is accessed only by authorised personnel.

🛡 Integrity

We aim to maintain accurate and reliable information throughout our services.

⚡ Availability

Our goal is to make our services available whenever you need them, subject to maintenance and unforeseen circumstances.

👤 Accountability

We take responsibility for how applicant information is collected, handled, and protected.

🔄 Continuous Improvement

We regularly review and strengthen our security practices as technology, regulations, and threats evolve.

Security Summary

Our approach to protecting your information includes:

  • ✓ Secure website connections (HTTPS)

  • ✓ Restricted access to applicant information

  • ✓ Trusted third-party service providers

  • ✓ Regular software and security updates

  • ✓ Confidential handling of client information

  • ✓ Ongoing review of security practices

  • ✓ Incident response procedures

  • ✓ Compliance with applicable UK & EU data protection requirements

  • ✓ Compliance with applicable NG data protection requirements