TrustGuard

Security & Trust

Built by security practitioners, for security practitioners.

Our Commitment

At TrustGuard AI, security isn't just a feature—it's foundational to who we are. Our leadership team includes former CISOs and security executives from major financial institutions and global enterprises. We've built enterprise security programs, passed regulatory examinations, and managed security at scale. We apply that same rigor to our own platform.

We understand that you're entrusting us with sensitive vendor and compliance data. We take that responsibility seriously and have implemented comprehensive security controls to protect your information.

Security Practices

Data Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption. Encryption keys are managed using industry-standard key management practices.

Access Controls

Role-based access controls ensure users only access data they need. Multi-factor authentication is supported for all accounts. Administrative access requires additional verification.

Infrastructure Security

Our platform runs on enterprise-grade cloud infrastructure with SOC 2 Type II certified providers. We implement network segmentation, intrusion detection, and continuous monitoring.

Secure Development

Our development practices include code review, static analysis, dependency scanning, and penetration testing. We follow secure coding guidelines and maintain a vulnerability management program.

Data Handling

Data Isolation

Customer data is logically isolated. Your vendor assessments, evidence files, and findings are never accessible to other customers or used to train models for other organizations.

Data Retention

You control your data. We retain data only as long as needed to provide services and meet legal requirements. Upon request, we will delete your data in accordance with our data retention policy.

Subprocessors

We carefully vet all subprocessors and require them to meet our security standards. A current list of subprocessors is available upon request as part of our customer onboarding process.

Compliance & Certifications

We are actively pursuing industry certifications and maintain controls aligned with leading security frameworks:

SOC 2

Type II in progress

NIST CSF

Controls aligned

ISO 27001

Framework adopted

Security Questions?

For security inquiries, questionnaire requests, or to report a vulnerability, please contact us.

Contact Security Team