Scopien Technologies Inc. - Trust Center

Compliance and Security Portal for Scopien Technologies Inc..

Framework overview

An overview of Scopien Technologies Inc.'s compliance status across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.

GDPR

Compliant

46Policies

An up to date list of policies published internally by Scopien Technologies Inc..

Access Control & Least Privilege

Logging, Monitoring & Audit

7.11.1.11 Hardening Guidelines_ Checklist

Authentication & Password

7.11.1.9 Clear Screen Policy

Vulnerability & Patch Management

Physical Security & Environmental

Encryption & Crypto Controls

Information Sharing & Transfer

Risk Management

Secure Configuration & Hardening

Incident Response & Breach Notification

7.11.1.17 Privacy Risk Assessment

Scopien Network Architecture Diagram

7.11.1.8 Backup and Restoration Policy

31Controls

An up to date list of controls published internally by Scopien Technologies Inc..

2FA

Organisation Chart

TLS / HTTPS

Employee Verification

Secure Secrets

Device List

Secure Code

Role-based Access Controls

App Availability

Employee Performance Evaluations

Contact Information

Diagramming

Manage Third-party and EU Representative Relationships

Infrastructure Inventory

Incident Response Tabletop Exercise

SOC 2 Type 1

Compliant

SOC 2 Type 2

Started

7.11.1.18 Data Protection Impact Assessment (DPIA)

7.11.1.7 Management Review Meetings

7.11.1.20 Procedures for Monitoring Privacy Inquiries & Complaints

7.11.1.16 Privacy Protection Awareness and Training Program

Background Screening & On/Off-boarding

Acceptable Use & Workstation Security

Sanctions & Disciplinary

7.11.1.1 Endpoint Management Policy

7.11.1.10 Cloud Security Policy

7.11.1.12 Firewall Policy

7.11.1.13 ISMS Training Module

Retention & Secure Disposal

7.11.1.2 Access Control Policy

7.11.1.15 Privacy Policy

Remote Access & BYOD

Vendor & Third-Party Risk

Security & Privacy Awareness Training

Information Security & Privacy Governance

7.11.1.4 Change Management Policy

Compliance & Regulatory Monitoring

Policy Management & Exception Handling

Change & Release Management

Secure Software Development Lifecycle

Data Classification & Handling

Privacy & Data-Subject Rights

Backup, Business Continuity & Disaster Recovery

7.11.1.14 Third-Party Security Policy

7.11.1.6 Information Security Governance Structure

7.11.1.3 Business Continuity & Disaster Recovery Policy

7.11.1.19 Breach Handling and Notification Procedure

7.11.1.5 Incident Management Policy

Appoint or Review Data Protection Officer

Review International Data Transfers

Employee Descriptions

Period Close-Out & Attestation

Backup Restoration Test

Board Meetings & Independence

Monitoring & Alerting