IT Resources Devon
IT Terms Glossary
A plain-English A-Z glossary for Devon business IT terms and tech terms, covering the IT support, cyber security, cloud, email and website terms that often come up in everyday decisions.

Plain English
Technology terms explained without the noise
IT language can be useful, but it can also make straightforward decisions feel more complicated than they need to be. This glossary explains common terms and acronyms in a practical way, with a focus on what they mean for small and medium-sized businesses in Devon.
Use it as a starting point when you are reviewing security, planning cloud changes, setting up new systems or trying to understand something a supplier has mentioned. If a term raises a question about your own setup, Longstone IT can help you turn it into a sensible next step.
Find a term
Search the IT glossary
Glossary
A-C
2FA - a second check after your password
2FA means two-factor authentication. It adds a second step to a login, usually after the password.
For example, you might enter your password and then use a code from an authenticator app or password manager. 2FA is one of the simplest improvements a business can make to reduce the risk of stolen passwords being used.
API - a way for software systems to talk to each other
API stands for application programming interface. It is a controlled way for one system to connect to another.
A CRM might use an API to send information to an accounts package, or a website might use an API to check availability in another system. APIs are useful, but they should be protected with sensible permissions and secure keys.
Antivirus - software that helps detect and block threats
Antivirus software checks devices for known malicious files and suspicious behaviour.
Modern protection often goes beyond traditional antivirus, but the aim is the same: reduce the chance of malware, ransomware or harmful downloads damaging your business systems.
Backup - a separate copy of important data
A backup is a copy of your data that can be restored if something goes wrong.
Good backups are separate from the original system, tested regularly and protected from accidental deletion or ransomware. For Devon businesses, backups are a core part of business continuity rather than just a technical extra.
Bandwidth - how much data a connection can carry
Bandwidth describes how much data can move across an internet or network connection in a given time.
Higher bandwidth can help with cloud apps, video calls, file sharing and hosted phones. It is not the only factor in a good connection though; reliability, latency and Wi-Fi quality also matter.
Business continuity - keeping work moving when something fails
Business continuity is the planning that helps your organisation keep operating when something unexpected happens.
That might include backups, spare devices, documented supplier access, recovery plans, tested restores and clear responsibilities. The aim is to reduce disruption before there is pressure.
Cloud services - systems accessed over the internet
Cloud services are applications, storage or systems delivered over the internet rather than running only on one local computer or server.
Microsoft 365, Google Workspace, cloud backups, hosted phone systems and online accounting tools are common examples. Cloud services can make work more flexible, but they still need proper security, access control and management.
CMS - software for managing website content
A CMS, or content management system, is the software used to create and manage website pages, blog posts, images and menus without editing code directly.
WordPress is a common CMS. For a business website, the important things are clear editing access, regular updates, reliable backups and sensible security controls, so the site stays easy to manage and safe to use.
Cookie - a small file saved by a website in your browser
A cookie stores small pieces of information in a web browser.
Some cookies are functional, such as keeping you logged in or remembering a preference. Others are used for analytics, advertising or tracking. Businesses should understand what cookies their website uses and explain them clearly where required.
CRM - software for managing customer relationships
CRM stands for customer relationship management.
A CRM usually stores customer details, sales notes, tasks, emails, calls and opportunities. It can be very useful, but only when permissions, backups, integrations and user processes are set up carefully.
Cyber Essentials - a UK cyber security certification scheme
Cyber Essentials is a UK scheme that helps organisations check important security basics.
It focuses on practical controls such as secure configuration, access control, malware protection, software updates and firewalls. It is often a useful starting point for small and medium-sized businesses that want a clearer security baseline.
Glossary
D-F
DKIM - an email authentication check
DKIM stands for DomainKeys Identified Mail. It helps receiving mail servers check whether an email was authorised by the sending domain.
In practice, DKIM uses a DNS record and a digital signature on outgoing mail. It is one of the settings that helps reduce spoofing and improve email deliverability.
DMARC - rules for handling suspicious email
DMARC stands for Domain-based Message Authentication, Reporting and Conformance.
It works with SPF and DKIM to tell receiving mail servers what to do when messages fail authentication. A careful DMARC setup can help protect your domain from email spoofing, but it should be introduced properly so legitimate email is not accidentally affected.
DNS - the system that points names to services
DNS stands for Domain Name System. It is often described as the phonebook of the internet.
DNS turns names like longstoneit.com into the technical records used for websites, email and other services. Incorrect DNS changes can take websites or email offline, so it is worth managing carefully.
Domain name - the address people use to find you online
A domain name is a readable internet address, such as longstoneit.com.
Your domain is connected to important services including your website, email, DNS and sometimes login systems. It should be protected with strong account security, renewal reminders and carefully controlled access.
EDR - advanced monitoring for devices
EDR stands for endpoint detection and response.
It is a more advanced form of device security that looks for suspicious behaviour on laptops, desktops and servers. EDR can help spot threats that traditional antivirus might miss and can support a faster response if something looks wrong.
Encryption - making data unreadable without the right key
Encryption protects data by making it unreadable to anyone who does not have the correct key or permission.
It is used in secure websites, device protection, password managers, backups and messaging systems. Encryption is important, but it does not replace good passwords, account controls or recovery planning.
Endpoint - a device that connects to your systems
An endpoint is usually a device such as a laptop, desktop, phone, tablet or server.
Endpoints matter because they are where people do their work. Keeping them updated, protected and properly managed reduces the chance of avoidable support and security problems.
Firewall - a control point for network traffic
A firewall controls traffic between networks, devices or services.
It can help block unwanted access and allow only the traffic that is needed. Firewalls can exist on office networks, servers, cloud platforms and individual devices.
Glossary
G-M
Google Workspace - Google email and productivity tools for business
Google Workspace is Google’s business platform for email, calendars, documents, file storage and collaboration.
It can work very well for teams, but it still needs good user management, MFA, sharing controls, device policies and a clear process for starters and leavers.
Helpdesk - a structured way to request IT support
A helpdesk gives users a clear way to request IT support and gives the support team a way to track issues.
Good helpdesk processes reduce lost messages, repeated questions and uncertainty. They also make it easier to spot recurring problems that need a proper fix.
Hosted VoIP - phone service delivered over the internet
Hosted VoIP is a business phone system delivered over an internet connection rather than a traditional phone line.
It can support features such as call routing, voicemail to email, mobile apps and easier remote working. The quality of the internet connection and network setup has a big effect on how well it works.
Huntress - managed endpoint security and response
Huntress is a managed endpoint detection and response service. It monitors devices such as laptops, desktops and servers for signs of suspicious activity and helps identify threats that may get past basic protections.
It fits alongside 2FA, password managers, updates and backups. 2FA helps protect account sign-ins, while Huntress helps watch the devices those accounts are used from and supports a faster response if something looks wrong.
IMAP - a common way email apps sync mailboxes
IMAP stands for Internet Message Access Protocol. It lets email apps sync messages from a mail server.
Many modern businesses use Microsoft 365 or Google Workspace instead of thinking directly about IMAP settings, but the term still appears when configuring mailboxes, scanners, websites or older systems.
IP address - a technical address for a device or service
An IP address is a numerical address used by devices and services on a network.
There are public IP addresses used on the internet and private IP addresses used inside local networks. IP addresses are often involved in firewall rules, remote access, printers, servers and internet troubleshooting.
ISP - your internet service provider
ISP stands for internet service provider.
Your ISP provides the internet connection for your office or site. When choosing a connection, speed matters, but so do reliability, support, contract terms, router options and whether a backup connection is needed.
Keeper - a password manager for teams and secure access
Keeper is a password manager and secure vault used to store passwords, passkeys, OTP codes, backup codes and other sensitive access information.
For businesses, Keeper can help trusted staff share access safely, generate strong unique passwords and remove access when someone leaves. It should still be protected with MFA, careful permissions and a clear process for who can see each record.
LAN - your local office network
LAN stands for local area network.
It is the network inside your office, usually connecting computers, printers, Wi-Fi access points, switches and other devices. A well-managed LAN makes day-to-day work more reliable.
Least privilege - only giving people the access they need
Least privilege means giving users the minimum access needed to do their work.
It reduces the risk of accidental changes, data exposure and account misuse. In practice, it means reviewing admin rights, file permissions, shared mailboxes and access to business systems.
MDM - central management for phones, tablets and laptops
MDM stands for mobile device management, although it is often used more broadly for managing company devices.
MDM can help enforce security settings, deploy apps, protect business data and remove access from lost or retired devices. It is especially useful for teams using laptops and phones away from the office.
MFA - more than one check before access is granted
MFA stands for multi-factor authentication. It means using more than one type of check before someone can access an account.
2FA is a common form of MFA. MFA might use a password, OTP code, device prompt, security key, biometric check or risk-based rule. The aim is to make stolen passwords much less useful.
Microsoft 365 - Microsoft business email and collaboration tools
Microsoft 365 is Microsoft’s cloud platform for business email, Office apps, Teams, SharePoint, OneDrive and more.
Many businesses use Microsoft 365 every day but only use part of what is available. Good configuration can improve security, file organisation, collaboration and user management.
MX record - the DNS record that points email to the right place
An MX record tells the internet which mail servers handle email for a domain.
If MX records are wrong, email may stop arriving. They are commonly changed during email migrations to Microsoft 365, Google Workspace or another mail provider.
Glossary
N-S
NAS - shared storage on a local network
NAS stands for network attached storage.
A NAS is a storage device connected to a network, often used for shared files or backups. It can be useful, but it still needs proper permissions, updates, monitoring and backup protection.
Network switch - a device that connects wired equipment
A network switch connects wired devices such as computers, printers, phones, servers and wireless access points.
Switches are easy to ignore until something goes wrong. The right switch setup can improve reliability, performance, segmentation and support for phones or Wi-Fi equipment.
OTP - a one-time code used for login security
OTP stands for one-time password.
In business security, it often means a short code that changes regularly and is used as the second step in a login. OTP codes are commonly stored in authenticator apps or team password managers.
Passkey - a newer way to sign in without a traditional password
A passkey is a modern sign-in method that can replace or reduce reliance on passwords.
Passkeys often use the security built into a device, such as biometrics or a device PIN. They can be safer and easier than passwords, but businesses still need to think about device ownership, recovery and shared access.
Password manager - a secure place to store and share logins
A password manager stores passwords and other sensitive login details securely.
For businesses, a team password manager is usually better than passwords saved in browsers, spreadsheets or personal accounts. It can support strong passwords, shared access, OTP codes, backup codes and offboarding.
Patch - an update that fixes software issues
A patch is a software update, often released to fix security vulnerabilities or bugs.
Keeping operating systems, browsers, plugins, apps and devices patched is one of the most practical ways to reduce avoidable security risk.
Phishing - a fake message designed to trick someone
Phishing is when attackers send fake emails, texts or messages to trick people into clicking links, opening files, sharing passwords or making payments.
Good protection includes filtering, MFA, staff awareness, safe payment processes and a culture where people feel comfortable checking before acting.
Ransomware - malware that locks files or systems
Ransomware is malicious software that locks files or systems and demands payment for recovery.
Reducing ransomware risk usually means keeping systems updated, limiting admin rights, using good endpoint protection, training users, securing remote access and maintaining tested backups.
Recovery codes - backup access codes for important accounts
Recovery codes are backup codes that can help you regain access if your usual 2FA method is unavailable.
They should be stored securely, ideally in a controlled team password manager or secure note, not in a desktop file, inbox or shared spreadsheet.
SaaS - software delivered as an online service
SaaS stands for software as a service.
It describes applications accessed online, usually through a subscription. Examples include CRM systems, accounting tools, HR platforms, email marketing systems and many cloud business apps.
SPF - a DNS record that helps validate sending mail servers
SPF stands for Sender Policy Framework.
It is a DNS record that lists which services are allowed to send email for your domain. SPF is commonly used with DKIM and DMARC to reduce spoofing and improve deliverability.
SSO - one sign-in used across multiple systems
SSO stands for single sign-on.
It lets users sign in once and access multiple connected services. SSO can make access easier to manage, especially when combined with MFA and clear user permissions.
SSL/TLS - the security used by HTTPS websites
SSL and TLS are technologies used to encrypt traffic between a browser and a website.
People often still say SSL, but TLS is the modern protocol. On a website, this is what sits behind HTTPS and the browser padlock.
Glossary
T-Z
Tenant - a business account area in a cloud platform
A tenant is a dedicated area for an organisation within a cloud platform.
For example, your Microsoft 365 tenant holds your users, domains, mailboxes, security settings and services. Tenant settings are important because they affect the whole organisation.
Ticket - a tracked IT support request
A ticket is a support request recorded in a helpdesk system.
Tickets help make sure issues are tracked, prioritised and resolved. They also give useful history when the same problem happens again.
TOTP - a time-based one-time password
TOTP stands for time-based one-time password.
It is the common type of OTP code that changes every 30 seconds in an authenticator app or password manager. It is often used for 2FA and MFA.
Uptime - how long a system stays available
Uptime describes how long a system, service or connection is available and working.
High uptime is important for internet connections, websites, servers, phone systems and cloud platforms. It should be considered alongside support quality, recovery options and monitoring.
UPS - battery backup for equipment
UPS stands for uninterruptible power supply.
A UPS provides short-term battery power to equipment such as servers, routers, switches or storage devices. It can help protect against brief power cuts and allow systems to shut down safely.
VLAN - a way to separate network traffic
VLAN stands for virtual local area network.
VLANs can separate different types of network traffic, such as staff devices, guest Wi-Fi, phones and servers. This can improve security, performance and management.
VPN - a secure connection into another network
VPN stands for virtual private network.
A VPN can provide secure remote access to a business network or protect traffic over an untrusted connection. VPN access should be limited, monitored and protected with MFA.
VoIP - phone calls carried over the internet
VoIP stands for voice over internet protocol.
It means phone calls are carried over an internet connection rather than traditional phone lines. Hosted VoIP can be flexible, but it depends on good connectivity and network setup.
WAF - a firewall for web applications
WAF stands for web application firewall.
A WAF helps filter and protect traffic going to a website or web application. It can reduce common attacks, but it should sit alongside secure hosting, updates, backups and sensible admin access.
WAN - a network that connects wider locations or services
WAN stands for wide area network.
It usually describes connectivity between locations, cloud services or networks outside a single office. Internet connections are often part of a business WAN setup.
Wi-Fi - wireless networking for devices
Wi-Fi lets devices connect to a network without a cable.
Good Wi-Fi is about more than signal bars. Placement, interference, capacity, guest access, security settings and the underlying internet connection all affect the experience.
WordPress - a popular website content management system
WordPress is a widely used content management system for websites.
It can be a flexible platform, but it needs regular updates, secure hosting, careful plugin choices, backups and protected administrator accounts.
Zero Trust - verify access rather than assuming it is safe
Zero Trust is a security approach based on verifying access rather than automatically trusting a device, user or network.
In practice, it often means MFA, least privilege, device checks, conditional access and careful monitoring. For smaller businesses, the principle is useful even when the implementation is kept simple.
Need a clearer answer?
Ask Longstone IT to make sense of your setup
If a technical term is hiding a bigger question about your business systems, security, cloud tools or support process, we can help you work out what matters and what to do next.