Legals
1. Company Information
Trading name
Student CRM is the trading name of Global Data Management UK Limited, a private limited company registered in England and Wales (Company No. 04272539).
Registered company details
- Registered name: Global Data Management UK Limited
- Company number: 04272539
- Registered office: First Floor Secure House, Lulworth Close, Chandler’s Ford, SO53 3TL
Trading address
Student CRM, Green Park, Exeter Park Road, Bournemouth, Dorset, BH2 5BD.
VAT registration
VAT number: GB 785 3428 96
Public procurement
- Organisation identifier: 04272539
- Organisation name: Global Data Management UK Limited
- Contact email: dom@student-crm.co.uk
Contact information
General enquiries: Here
Green Park, Exeter Park Road, Bournemouth, BH2 5BD
2. Terms of Business
Our Master Services Agreement (MSA) sets out the terms that govern how our clients use the Student CRM platform.
A copy of our MSA can be supplied upon request.
3. Security
Last updated: October 23, 2025
Keeping your data safe and available to you is our number one priority. As a SaaS provider we understand your need for robust, professional information security policies. Below you’ll find answers to the most common questions about how Student CRM keeps your data secure.
1) Data storage location
While you can access your data securely from anywhere in the world, the software is hosted on our cloud platform in England. The data itself is stored in England, with uploaded files and backups stored in England, Ireland and Amsterdam.
You have ongoing access and tools to download your live data at all times. This CRM service provider company is limited and registered in England and listed with the UK’s Information Commissioner’s Office.
2) Data access
Your data is only available to users you authorise. You have full user administration rights and can create or amend your own users. You can close down single-user or all-user access at any time.
Access is via our secure HTTPS connection using our authentication and security measures. User logins and actions are recorded in your user log for inspection and to support any investigation into suspected inappropriate or illegal user activity.
3) Back up and recovery
Our Business Continuity Plan ensures your data is backed up to alternative and secure locations within the European Economic Area. The plan allows you to access your data through unexpected small-scale interruptions up to and including total SaaS provider business failure.
4) Regulatory compliance
As your data is stored within the European Economic Area, you are able to comply with your obligations in the Data Protection Act 2018. Using the built-in student opt-in permissions controls within the system, you can also comply with your obligations under the European Union’s Data Protection Directive 95/46/EC.
Primary responsibility for compliance rests with you as Data Controller, within the framework of our joint Data Controller/Processor agreement.
5) Information security standards
Our professionals continually monitor our security status and enhance our Information Security Management System to follow ISO/IEC 27002 codes of practice. While we are not yet independently certified, our standards meet those recognised in the industry. For any information security questions, please contact us at is@dataharvesting.com.
6) Responsible disclosure
If you discover a security vulnerability, please report it responsibly by emailing security@dataharvesting.com. Publicly disclosing vulnerabilities can put users at risk until resolved. We will work with you to understand and fix the issue.
Please do not attempt DoS attacks, spam, black-hat SEO, or use automated vulnerability tools that generate high traffic. Not all disclosures may warrant remedial action — for example, bugs requiring highly unlikely user actions may not meet the bar.