There are a number of stakeholders whose personal data we hold and are responsible for looking after. As a Charity we apply the same high-level security measures and rigour that any good businesses apply to looking after their customer's personal information. 

What are Cyber Essentials?

Cyber Essentials is a Government National Security Centre that supplies the guidance regarding the technical controls that helps us to guard against the most common cyber threats and demonstrate our commitment to cyber security.

Cyber Essentials launched 2014 and requirements were developed by the National Cyber Security Centre (NCSC) which is part of the Government Communications Headquarters (GCHQ). The initiative is based around common attacks NCSC were seeing at the time.

What does the certificate mean?

The certificate awarded by Cyber Essentials to organisations demonstrates that organisation's commitment to cyber security.

It verifies that our IT is suitably secure and meets the standards set out by the certification. There are two levels of certification: Cyber Essentials and Cyber Essentials Plus.

Historically we achieved Cyber Essentials Certification, but this year the Charity opted for the Cyber Essentials Plus certificate.

What's involved in attaining the certification?

To pass Cyber Essentials Plus the Charity underwent a two-day audit by an independent accredited IT security company.

Head office, our shops and airbases were all tested to ensure compliance across the charity.

We were required to achieve the Cyber Essentials Plus certificate as part of our Care Quality Commission. The Cyber Essentials Plus certification is renewed annually.

What's next for cyber security at DAA?

Although we now have the certificate, we continue to ensure all our systems are kept up to date with the latest protection and staff are regularly trained on the latest cyber security threats.

Further information on cyber security can be found at the National Cyber Security Centre website.