How We Protect Data


Historic England has been awarded Cyber Essentials certification, demonstrating our commitment to digital security.

We employ a variety of physical and technical measures to keep your data safe and to prevent unauthorised access to, or use or disclosure of your personal information.

Electronic data and databases are stored on secure computer systems and we control who has access to information (by both physical and electronic means). We also store information in paper files which are kept securely. All our staff are trained in the importance of protecting personal and other sensitive information.

Where you have provided a password enabling you to access parts of our website or use our services it is your responsibility to keep this password confidential. Please don't share your password with anyone.


Historic England is based in the UK and we store our data within the European Economic Area (EEA). Some organisations which provide services to us may transfer personal data outside of the EEA, but we'll only allow them to do so if your data is adequately protected.

Payment security

Historic England complies with the payment industry data security standard (PCI-DSS) published by the PCI Security Standards Council and will never store your card details. If you use a credit or debit card to make a payment your card details are encrypted and submitted securely to our payment provider.


Some of our premises have CCTV and you may be recorded when you visit them. CCTV is there to help provide security and to protect both you and Historic England. CCTV will only be viewed where necessary (for example to detect or prevent crime) and footage is only stored temporarily.

We will put up notices so you know when CCTV is in use.