Entity has established an Incident Management & Response Policy, which includes guidelines and procedures to be undertaken in response to information security incidents. This is available to all staff members via the company employee portal.
profile_icon
| Sep 08, 2023
Entity maintains an inventory of infrastructure assets and segregates production assets from its staging/development assets
profile_icon
| Sep 08, 2023
User access to the entity’s application is secured using https (TLS algorithm) and industry standard encryption.
profile_icon
| Sep 08, 2023
Every Production host is protected by a firewall with a deny-by-default rule. Deny by default rule set is a default on the Entity’s cloud provider.
profile_icon
| Sep 08, 2023
Entity ensures that new hires go through a background check as part of their onboarding process
profile_icon
| Sep 08, 2023
All production database[s] that store customer data are encrypted at rest.
profile_icon
| Sep 08, 2023