All personnel sign confidentiality agreements. Access to code, data, and other information is strictly limited to employees that require access to be able to perform their day-to-day work.
Where available, all access to third party systems must be configured to require multi-factor authentication.
Third party systems where confidential information is handled must use some form of role-based access control or other forms of restricting access to roles or users.
Devices used by personnel to access confidential information must make use of LiveDiligence approved antivirus/antimalware protection.
Our systems are continuously being updated and improved to minimize security risks.
We continuously monitor and scan our systems for irregularities, malicious software, and suspicious files, so that we can intervene as soon as any threats or problems are detected.
Periodic security assessments are done based on best practices and security guidelines to make sure our systems stay safe and our data protected.
For the purpose of incident response, customer support, or disaster recovery.
For no longer than is required to fulfil the purpose of the access.
In an auditable manner.
if we are required by law to access such data.
All employees are required to immediately report any potential security breach.
In the event of a security breach that affects customer data where we are processor, we will communicate with our customer (usually the controller) regarding the severity, scope, root cause, and resolution of the breach.
Our back-up policy describes what and how we back-up our data.
We carry out monthly testing of our disaster recovery process to ensure the continuity of our services and integrity of customer data.
LiveDiligence has already been used on over 170 transactions — we’d love you to join our growing community.