SombraNotes, Inc. - Trust Center

Compliance and Security Portal for SombraNotes, Inc. .

Framework overview

An overview of SombraNotes, Inc. 's compliance status across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.

SOC 2 Type 2

In progress

An up to date list of policies published internally by SombraNotes, Inc. .

Security & Privacy Awareness Training

Information Sharing & Transfer

Vulnerability & Patch Management

Secure Configuration & Hardening

Data Classification & Handling

Background Screening & On/Off-boarding

Vendor & Third-Party Risk

Authentication & Password

Incident Response & Breach Notification

Logging, Monitoring & Audit

Risk Management

Compliance & Regulatory Monitoring

Sanctions & Disciplinary

Privacy & Data-Subject Rights

Access Control & Least Privilege

An up to date list of controls published internally by SombraNotes, Inc. .

Secure Secrets

Public Policies

Encryption at Rest

TLS / HTTPS

Secure Code

Office Access & Door Monitoring

Monitoring & Alerting

App Availability

Incident Response

Planning

Contact Information

Sanitized Inputs

Visitor Control

Role-based Access Controls

Building / Workplace Rules

Organisation Chart