Nexa - Trust Center

Compliance and Security Portal for Nexa.

Visit Nexa

Monitored by Comp AI

Compliance overview

An overview of the compliance status of Nexa across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.

HIPAA

Compliant

25Policies

An up to date list of policies published internally by Nexa.

Vulnerability & Patch Management

Authentication & Password

Information Security & Privacy Governance

Encryption & Crypto Controls

Acceptable Use & Workstation Security

Change & Release Management

Privacy & Data-Subject Rights

Risk Management

Compliance & Regulatory Monitoring

Vendor & Third-Party Risk

Background Screening & On/Off-boarding

Secure Configuration & Hardening

Retention & Secure Disposal

Secure Software Development Lifecycle

Security & Privacy Awareness Training

27Controls

An up to date list of controls published internally by Nexa.

Employee Verification

Contact Information

Employee Descriptions

App Availability

TLS / HTTPS

Code Changes

Device List

Secure Devices

Planning

Public Policies

Secure Secrets

Review Policies

Diagramming

Incident Response

Sanitized Inputs

Organisation Chart

Secure Code

Role-based Access Controls

Penetration Test

Security Training for Staff

Access Review Log

Employee Performance Evaluations

Incident Response Tabletop Exercise

Encryption at rest and production firewall

2FA

Employee Access

Monitoring & Alerting