System Security Training at ISO Lite Bites

At ISO Lite Bites, we take system security seriously. We are committed to protecting our website, learner information, and digital services through practical, proportionate security measures designed to support confidentiality, integrity, and availability.

As an online training business, we know trust matters. That is why we work to maintain secure access, use trusted technology providers, keep systems updated, and review our controls regularly to reduce risk and support a safe learning environment.

How we protect our systems

We use a combination of technical and operational controls to help protect ISO Lite Bites and the information processed through our website. These controls are designed to reduce common risks such as unauthorised access, service disruption, and malicious activity.

Our security approach includes:

• Secure website encryption using HTTPS.
• Strong password practices and restricted administrator access.
• Access controls based on business need.
• Ongoing software, platform, and plugin updates where applicable.
• Routine backups and recovery measures.
• Monitoring and protective measures to reduce the risk of malicious activity.

Access and account protection

Access to business systems and administrative areas is limited to authorised users only. We apply the principle of least privilege wherever possible, meaning access is only given to the systems and information needed for a legitimate business purpose.

We also aim to use strong authentication practices, secure credentials, and controlled user permissions to reduce the likelihood of unauthorised access. Where supported by our providers, we use additional account protection measures to strengthen security.

Platform and provider security

ISO Lite Bites relies on reputable third-party platforms and service providers to support areas such as website hosting, payments, email communications, and course delivery. Where possible, we select providers with established security practices and built-in protections appropriate to the service they deliver.

This means some information may be processed through carefully chosen external systems, but only where needed to operate the business effectively and deliver services to learners. We recommend that users also review the privacy and security information provided by any third-party platform used during their interaction with us.

Monitoring, maintenance and updates

Security is not treated as a one-off task. We review our systems periodically, apply updates, remove unnecessary access, and take reasonable steps to keep our website and connected services maintained over time.

We also recognise that no internet-based service can ever be guaranteed to be completely secure. However, we are committed to maintaining sensible and proportionate safeguards and improving our controls as the business evolves.

Payments and sensitive data

Where payments are taken, we aim to use secure payment providers rather than storing unnecessary card data ourselves. This helps reduce risk and supports safer transaction processing for customers.

We also try to limit the amount of personal information collected to what is relevant for course access, communication, service delivery, and business administration.

What users can do

Security is strongest when everyone plays a part. If you create an account or interact with our systems, we encourage you to:

• Use a strong, unique password.
• Avoid sharing login details.
• Contact us if you notice suspicious activity.
• Keep your own device, browser, and software up to date.

Reporting a concern

If you believe you have found a security issue relating to ISO Lite Bites, please contact us promptly at admin@isolitebites.com so that we can review the matter and take appropriate action. Please include as much relevant detail as possible, such as the page affected, the issue identified, and any screenshots that may help us investigate.