Effective Date: December 5, 2025

Tollring General Data Protection Regulation (GDPR) Credentials Statement

Who we are and what services we are providing

Micro Plus Software Limited trading as Tollring (“Tollring”)

Registered office: 10 Moorcroft, Harlington Road, Uxbridge, Middx UB8 3HD

Designated contact: dpo@tollring.com

Services provided: Software development, product supply and support.

Personal data being processed and processing activities

The personal data being processed by Tollring is that which the controller has supplied to Tollring or which Tollring has obtained or created in order to provide the services in accordance with, and as notified in, the relevant client contract, quote and/or end user license agreement. We may also use personal data for marketing and credit control purposes.

As also notified in the relevant client contract, quote and/or end user license agreement, there are circumstances in which Tollring will be acting as Controller in relation to the personal data.

When a Partner, or one of their customers, calls the Tollring technical help desk or partner support team, we are contractually required to record these calls as part of the agreements we have in place with our Partners, to help us meet our service obligations.  Our support engineers may sometimes need to speak directly to end users to resolve an issue and as such these calls may be recorded.  These call recordings already form part of our Data Protection and Retention policy and handling of these recordings forms part of our GDPR programme.

Data management and security

Tollring is registered with the U.K. Information Commissioner’s Office under registration reference Z1990751.  Tollring takes data security very seriously and follow best practices for security and data storage including but not limited to:

  • Company GDPR policy
  • Information Security Management System (ISMS) policy
  • Controlled and logged access to sensitive business systems.
  • Controlled physical access to company premises.
  • Employee training on policies and best practices.
  • Regular employee reminders of policy and best practice.
  • A documented data classification register.
  • Data retention policy.
  • Data security incident management policy.
  • Website privacy policy
  • Website terms and conditions
  • Nominated Data Protection contacts (dpo@Tollring.com)
Confidentiality

Tollring employees are bound by contractual confidentiality provisions in their contracts of employment. In addition, employees are required to complete an annual declaration confirming their awareness of Tollring’s confidentiality and security procedures. Compliance with any group policies relating to data protection and confidentiality of information is mandatory.

Use of Sub-Processors

Tollring has either obtained or is in the process of seeking and obtaining similar Credentials Statements or equivalent from Sub-Processors who process the personal data which is the subject of our contract.