Legal & Trust Centre

Transparency is part of the product.

Friam Limited builds compliance products that customers can show a regulator. We hold ourselves to the same standard. Below are the policies, statements, and commitments that govern how we protect your data, deliver our services, and conduct our business across the whole EveryGuard family.

Our approach to privacy

Friam operates a ‘privacy by design’ model. Our marketing sites use no analytics cookies, no advertising pixels, and no cross-site trackers — only strictly-necessary cookies for security and core function. We don’t interrupt you with a consent banner because we don’t do invasive tracking. Pageview tracking on our sites is first-party and session-scoped, with no third-party data sharing.

Governance documents

Every policy, in one place.

These documents apply across Friam’s products. Where a clause is specific to a particular product or regulated activity, it says so.

Data Protection3 Security1 Operations1 Legal1 Ethics3 Product1

Data Protection

Privacy Policy

How we collect, use, and protect your personal data. AWS London (eu-west-2) data residency.

Last updated · 17 June 2026Read →

Data Protection

GDPR Statement

Our commitment to UK GDPR compliance and your data subject rights.

Last updated · 17 June 2026Read →

Data Protection

Web Scraping & Data Collection Policy

How we collect and use publicly available data from public registers, official sources, and firms’ own public websites.

Last updated · 17 June 2026Read →

Security

Information Security Overview

Our information security management approach, aligned with ISO 27001 principles.

Last updated · 17 June 2026Read →

Operations

Service Level Agreement

Platform uptime target (99.5%), support response times, and service credits for paying customers.

Last updated · 17 June 2026Read →

Legal

Terms of Service

Terms governing use of our platforms, scan services, and Trust pages.

Last updated · 17 June 2026Read →

Ethics

AI Ethics & Transparency Policy

How we use AI responsibly — with human oversight on consequential outputs and a clear right to appeal.

Last updated · 17 June 2026Read →

Ethics

Modern Slavery Statement

Our voluntary commitment to preventing modern slavery and human trafficking.

Last updated · 1 May 2026Read →

Ethics

Equal Opportunities Policy

Our commitment to equality, diversity, and non-discrimination.

Last updated · 17 June 2026Read →

Product

WordPress Plugin — Versions & Updates

Version history, update process, and compatibility for our Trust WordPress plugins.

Last updated · 1 May 2026Read →

Trust overview

How we keep your data safe.

A plain-English summary of our security posture. The full detail is in the Information Security Overview, which is aligned with the principles of ISO/IEC 27001:2022. We have not pursued formal ISO 27001 certification; as an early-stage company we apply these controls proportionately to our size and risk, and continuously review and improve them.

UK data residency

Our primary infrastructure — database, document and image storage, and document text extraction — runs on Amazon Web Services in the London region (eu-west-2), giving UK data residency for the large majority of the personal information we hold.

Encryption everywhere

Data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Signed compliance documents and audit packs are SHA-256 hashed, so any tamper is detectable.

Least-privilege access

Role-based, need-to-know access controls. Magic-link authentication for end-user logins (no passwords stored for trainees); account passwords are hashed with bcrypt.

Resilience & recovery

Automated daily database backups with point-in-time recovery. Documented recovery procedures for critical systems, and cached public Trust pages so customer-facing pages stay available during a brief backend outage.

Breach notification

Incident response aligned with the UK GDPR 72-hour ICO notification rule. Where we process data on a customer’s behalf, we notify them without undue delay so they can meet their own obligations.

Vetted sub-processors

A short, named list of sub-processors, each under a data processing agreement. The full list and the two narrow flows that occur outside the UK are set out in the Privacy Policy.

Open data & public sector information

Built on official UK sources.

Our compliance products reproduce and summarise UK legislation and official guidance — drawn from legislation.gov.uk and GOV.UK — so that the firms we serve can understand the duties that apply to them. That material is Crown copyright, made available for reuse under the Open Government Licence.

Contains public sector information licensed under the Open Government Licence v3.0.

Read the full notice on the Open Government Licence page, or read the licence itself at nationalarchives.gov.uk/doc/open-government-licence/version/3/.

Who we are

Company information.

Friam Limited is the company behind AgentGuard, Ready Vet Staff (VetGuard), HotelGuard, FirmGuard, CareGuard and the EveryGuard family of UK compliance products.

Legal entity: Friam Limited
Company number: 14219476 (England and Wales)
Registered address: 164–170 High Street
Crowthorne, England, RG45 7AT
VAT number: GB419765755
Contact: General: hello@everyguard.uk · Legal & data protection: legal@everyguard.uk

Registered with the Information Commissioner’s Office for data protection compliance · Registration ZC088528.

Questions about any of these policies?

We’re happy to clarify any aspect of our legal documents or data practices.

Email us →