Trust Centre

Security, governance and evidence-led delivery for complex data migrations.

DataMC protects client data and delivers complex migrations through recognised security standards, governed delivery processes and auditable controls.

Secure digital shield trust centre visual

How does DataMC build trust into every migration?

By combining recognised security standards, governed delivery processes, proven methodology and auditable controls from planning through to go-live.

01 What we do
DataMC applies a standardised security and risk framework across every project, delivering migrations with confidence and predictability across a regulated engagement.
02 Why it matters
Migrations involve sensitive client data that must be transferred with the right controls and accountability aligned in scale, risk and complexity.
03 How we do it
We combine ISO 27001:2022, SOC 2 Type 1, GDPR, Microsoft security best practices, foundational data platforms and our methodology and EXIT RUN.
04 Assurance at every step
Our people, processes, technology and independent audits help us deliver migration outcomes you can rely on.

Our certifications and frameworks

DataMC operates with internationally recognised security standards, governed advisory standards and industry best practices throughout every migration engagement.

ISO/IEC 27001:2022 Certified

Our Information Security Management System is certified to ISO/IEC 27001:2022.

GDPR Compliant

We comply with the General Data Protection Regulation and applicable privacy laws.

SOC 2 Type 1 Aligned

We operate controls aligned to the SOC 2 Type 1 standard.

Cyber Essentials Certified

Our UK service is Cyber Essentials certified, validating defences against common cyber threats.

Essential Eight Aligned

Our Australian operations align with the Australian Cyber Security Centre’s Essential Eight maturity model.

How DataMC supports governed migrations at delivery:

Secure data processing in accredited Australian and international environments.
Role based access, least privilege and just-in-time access enforcement.
Encryption at rest (AES-256) and in transit.
End-to-end audit, approval and sign-off.
Proactive security scans and vulnerability management.
Support availability and continuous improvement.

Laptop showing governed migration management interface

Data privacy & controlled access

We collect and use data in line with our privacy policy and contractual obligations.

Data minimisation and purpose limitation.
Client data stays governed and secure in the region it was collected or stored originally.
De-identified data for use case discovery.

Governed AI use in migration

AI-supported analysis is used to assist, not replace, human decisioning in migration outcomes, governed and controlled.

Models do not see client data directly and do not license to third-party generative services.
Always aligned to client risk policy and regulatory requirements.
AI use is auditable and aligned with our risk management policy.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_201771545_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.