Privacy & Data Protection

Empirics employs strict data security controls across all of our data technologies and assets. Our Information Security Management System (ISMS) has been ISO27001:2013 certified since 2015. The ISMS adheres to the GDPR requirements and is aligned to the requirements of the ADPA CPS234 standard. We form part of Link Group’s global standard in Security, Monitoring, Logging and Identity Access management framework, including Provisioned Access Management (PAM) via OKTA.

European Union GDPR

As a GDPR-compliant data processor, your Customer Data Platform will be GDPR compliant


Empirics has been part of Link Group’s ISO27001:2013 certified Information Security Management System framework since 2015 and continue to operate under this framework.

CPS 234

Empirics and Link Group are CPS 234 compliant

Control Framework

We take the protection of Client data extremely seriously and follow the control framework established by Link Group that is aligned to international standards to address the people, processes and technology required to ensure a systematic, risk based approach to Information Security to ensure the maintenance of the Confidentiality, Integrity and Availability of all application systems and client data.


Empirics and Link Group’s Information Security framework ensure encryption of data in-transit and at rest.

Restricted Data Flags

Control the flow of data at a foundation level with tools supplying visibility over data flow and the capability to restrict the distribution of identified information.

Private Cloud

For orgnaisations that need to comply with the privacy and security rules under regulations, single tenant solutions are offered with extended data security to comply with these standards.

Data Recovery

Empirics operates at extremely large scale and with very big data sets. Our solutions ensure that data is always available and, in the rare case data needs to be recovered, can be recovered from an online backup quickly

Data Privacy & Usage

Your data and your customers data are not accessed or used without explicit permission. You're in the driver's seat when it comes to defining how your data is processed. Empirics will only access your data according to your instructions.

Data Ownership

Your data is yours. Data is retained and available to you for the full time period agreed by you. This time period can be adjusted based on your needs.

Geo-based Management

Empirics supplies tools to manage data flow based on geography to help clients comply with standards and industry regulations that vary from region to region, including but not limited to GDPR and APRA CPS 234.

Privacy By Design

Empirics is committed to the principles of Privacy by Design. Empirics provides services that make it possible for its clients to create a world where they unify their data to intelligently engage and delight customers while still living by the principle of Privacy by Design.