SmartVault’s Information Security Program is designed to protect the confidentiality, integrity and availability of both SmartVault and customer data, such as:
- The mission and business-critical systems that customers rely upon for cloud services, technical support and other services;
- Personal and other sensitive information that SmartVault processes during its business, including customer, partner, supplier and employee data residing in SmartVault’s internal systems and third-party platforms; and
- SmartVault source code and other sensitive data against theft and malicious alteration.
SmartVault’s information security policies and practices govern the management of security for SmartVault’s operations, and the services provided to its customers, and which apply to all SmartVault personnel, including employees, and contractors. These policies are aligned with the ISO/IEC 27001:2022 standard and guide security within SmartVault.
SmartVault has implemented a wide variety of preventive, detective, and corrective security controls with the objective of protecting information assets. SmartVault actively aligns to a variety of industry and regulatory frameworks, and best practices including the International Organisation for Standardization (ISO), System and Organisation Controls (SOC 2), National Institute of Standards and Technology (NIST), CIS v8 controls, Payment Card Industry Data Security Standard (PCI DSS), OWASP and other industry sources.
The Whistic Assurance Center is a summary of information in a profile organized in a way to help you find the information you need efficiently. Use this section to help answer questions on compliance and security posture in different topic areas quickly. (Learn More)