Guava

Trust Center Header

Trust Center Subheader

See section

Resources

Subprocessors

Monitoring

Continuously monitored by Secureframe

View all

Compliance

Change Management

Baseline Configurations

Baseline configurations and codebases for production infrastructure, systems, and applications are securely managed.

Organizational Management

Information Security Program Review

Management is responsible for the design, implementation, and management of the organization’s security policies and procedures. The policies and procedures are reviewed by management at least annually.

Internal Control Monitoring

A continuous monitoring solution monitors internal controls used in the achievement of service commitments and system requirements.

Risk Assessment

Vendor Due Diligence Review

Vendor SOC 2 reports (or equivalent) are collected and reviewed on at least an annual basis.

Access Security

Access to Product is Restricted

Non-console access to production infrastructure is restricted to users with a unique SSH key or access key

Unique Access IDs

Personnel are assigned unique IDs to access sensitive systems, networks, and information

Resources

Subprocessors

Monitoring

Change Management

Availability

Organizational Management

Confidentiality

Vulnerability Management

Incident Response

Risk Assessment

Network Security

Access Security

Physical Security

Compliance

Monitoring

Change Management

Organizational Management

Risk Assessment

Access Security