Data Security

Hunt&Peck follow UK GDPR  & the Data Protection Act 2018 compliancy guidelines.

As data processors we have strict protocols and safeguards in place for handling your data as guided by the DPA 2018 & UK GDPR.

We are also able to work with our European clients, compliant with EU GDPR.

Please email us if you require further details on our IT protocols and data security.


We use an encrypted upload service to receive and transfer files  via our professional account with WeTransfer, with whom we have signed a data processing agreement.

Completed transcripts will be sent via a one-time, password-protected download link to clients’ email. Files can also be encrypted and password protected on request.

If clients prefer to use their own organisation’s file-sharing secure systems, we are happy to work within alternative structures.


Until downloaded, files are stored on WeTransfer’s European servers, using AES 256 encryption at-rest. Downloaded files are stored on an encrypted hard drive on secure, updated systems.

Audio files are securely deleted from all systems after completion of transcription project and transcription documents are deleted 3 weeks after  completion, unless specified otherwise by the client.

As data processors we have strict protocols and safeguards in place for handling your data and our processes and procedures are reviewed, updated and monitored  : please email us if you require further details on our security systems.

We happy to work with client’s own Data Sharing Agreements and provide certificates of deletion.


We understand the sensitive nature of the data we transcribe and can assure complete confidentiality.


We do not store cookies or personal information via our website.

Your contact details and email addresses are kept for purposes of providing our core transcription service and are never passed on to any third party.

Hunt&Peck are committed to protecting the privacy of our clients and all data is treated as strictly confidential at all times in accordance with our confidentiality policy or a client’s own confidentiality & data sharing policy.


We may want to contact you regarding our services or send you occasional marketing material, but we will gain your permission before doing so.

Under the data act,  you have the right to ask us to remove your personal data, which we would be happy to do.

We would only publish your testimonials about our service with your permission, and this would be removed after 4 years.


Data Subjects will have be made aware that we will be processors of their data. We understand they have the right to request access to their data whilst in our possession and will comply fully with this if requested to.