Security Measures

Security Measures - Campaignmaster.png

At Campaignmaster, we do everything we can to have the most secure platform. Our engineers and developers keep up-to-date with the latest advances in cyber-security and implement security layers to protect our platforms and our users. Continue reading to discover the benefits of some of our many security features.

Blue Line Break Campaignmaster

Cyber Essentials Certification

We take the security of our systems very seriously and take many precautions to defend against cyberattacks by adopting the best-of-breed cybersecurity practises. We ensure boundary firewalls and internet gateways (amongst other access points) are as protected as much as possible with secure configurations to prevent hackers from gaining unauthorised access to data.

HTTPS Cloud Based Platform

HTTPS (Hyper Text Transfer Protocol Secure) is a protocol which acts as the bridge between your web browser and the website that you are accessing and through which the data is transmitted. The Campaignmaster platforms run on HTTPS protocols and are equipped with secure certificates ensuring that users are logging into a secure, online platform.

ICO/ISO Registered

ICO Certification demonstrates that our processing of personal data complies with the GDPR requirements, in line with the accountability principle. ISO certification is the process in which a business wishes to operate in order to achieve it’s objectives. By maintaining the external certification we prove our commitment to the objectives set and can stay in control of our processes and procedures.

IP Restricted Access

Have you ever wanted to only allow a certain individual or company to access one of your applications? Our IP restriction function allows the client administrator to control who can access our online platforms and from where.

Two Factor Authentication

Two Factor Authentication requests additional information from users in order to log into their accounts. We work with organisations such as the NHS, private hospital groups, banks and building societies, where just a username and password is not sufficient for access to sensitive data.

Penetration Testing

A Penetration Test or Pen Test for short, is a way to test a computer system or application for exploitable vulnerabilities, by performing a simulated cyber attack on it. This is conducted by an external company who then provide a report back on their findings. This test is conducted on a regular basis by Campaignmaster.

No Sub Processors

A sub-processor is a third-party data processor who has or potentially will have access to your data. At Campaignmaster we do not employ or engage with any sub processors. Not only in regards to data, but all development for all our platforms and design work is managed and completed in house and we do not outsource to any third parties.

UK Based

As well as being GDPR compliant, Campaign Master (UK) Ltd is also a UK based company with headquarters in Harrow-on-the-Hill in North West London. Our servers are based in Central London so your data never leaves the EU/EEA. All data is processed at our data centre based in Canary Wharf.

GDPR Compliant

The General Data Protection Regulation is a European-wide law that replaces the Data Protection Act 1998 in the UK. The GDPR applies to ‘personal data’, which means any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. At Campaign Master (UK) Ltd, we are fully GDPR compliant. Find our GDPR statement here.


SSL encrypted links on all links, images, forms, landing pages in your CM Email Marketing account.


TLS is a cryptographic protocol that provides a secure channel for transmitting data over the internet. When applied to SMTP, it ensures that email communication remains confidential and protected against eavesdropping.

Opportunistic TLS (Transport Layer Security) for SMTP (Simple Mail Transfer Protocol) is a security practice used in email communication to encrypt the data exchanged between email servers or clients whenever possible.

Online communications can be subject to cybercrimes and at Campaignmaster we work hard to ensure all our emails are delivered as securely as possible. For this reason, we provide opportunistic TLS as standard on all accounts. This means encryption is attempted when possible, but it does not enforce this. If the receiving server does not support TLS or if there are issues with the TLS negotiation, the email communication may proceed without encryption.

However, we also provide forced TLS if desired by clients too.