CredSpark Security Statement
Last Updated: February 4, 2025
At CredSpark, we are dedicated to maintaining the highest level of security and protecting the data entrusted to us by our customers, employees, stakeholders, and partners. This Security Commitment Statement outlines our approach to implementing robust security measures and controls in alignment with the Trust Services Criteria (TSC) for Security, as established by the American Institute of CPAs (AICPA) for SOC 2 compliance.
Security
We implement and maintain appropriate technical, physical, and administrative safeguards to protect against unauthorized access, disclosure, alteration, and destruction of data.
We regularly assess and update our security controls to address emerging threats, vulnerabilities, and changes in the business environment.
We conduct security awareness training programs for our employees to ensure they understand their roles and responsibilities in maintaining information security.
Incident Response
We have an established incident response plan to promptly and effectively address security incidents or potential data breaches.
We will notify affected parties in a timely manner if a security incident poses a risk to their personal information.If a security incident poses a risk to affected parties, we will provide timely notifications in accordance with applicable laws and regulations.
Continuous Improvement
We regularly review and enhance our security controls and processes to adapt to evolving technology, threats, and business requirements.
We conduct periodic assessments and audits to ensure compliance with SOC 2 security requirements.
By adhering to this Security Commitment Statement, we demonstrate our commitment to providing a secure environment for our customers’ data and upholding the highest standards of information security.
Contact
For any security and privacy concerns, please reach out to: info@credspark.com
