Skip to content
TeeOS

Security

Security built in from the schema up.

Member data is the most sensitive thing a club holds. Here's how TeeOS keeps it protected — the basics, in plain English.

UK data residency

Member data lives in Google Cloud's London region, with in-region backups. It never leaves the UK.

Encrypted end to end

Data is encrypted in transit (TLS) and at rest — no plain-text member data sitting on a disk.

Isolated per club

Every club's data is separated at the database level. One club can never read or write another's.

Least-privilege access

Staff get role-based access to only what they need, and every staff change is written to an audit log.

We never hold card details

Payments run through Stripe and GoCardless. Card numbers never reach our servers, forms or logs (PCI SAQ-A).

Backups & recovery

Automated backups with point-in-time recovery, kept in the UK — so nothing is lost to a mistake or an outage.

Data protection by design

Personal and financial data are kept cleanly separate, we collect only what a club actually needs, and a member's right to be forgotten genuinely works — erase them and they're gone, for good. TeeOS is built for UK GDPR from the ground up.

Responsible disclosure

Found a security issue? We'd rather hear from you than not. Email us the details and we'll acknowledge it quickly and keep you posted while we fix it — please give us a reasonable chance to resolve it before disclosing publicly.

security@teeos.golf

For how we handle personal information, see our privacy notice.