The trust we ask for, documented.
Clients hand us their most sensitive accounts, decisions, and data. This is how we protect them, stated plainly, so you can hold us to it.
How we protect your information.
Least Privilege
Access to client systems and data is granted narrowly, tied to a specific engagement, and reviewed on a regular cadence. When work ends, access ends.
Encryption
Sensitive data is protected in transit and at rest using current, industry-standard encryption. Credentials are stored in dedicated secret managers, never in plain files.
Advanced Protection
For executive and administrator accounts, we lead with Google Advanced Protection and, for Microsoft 365 organizations, Microsoft AccountGuard, the strongest practical defenses against takeover.
Phishing-Resistant MFA
We favor hardware security keys and passkeys over codes and prompts, closing the gap that most account takeovers exploit.
Authenticated Mail
We enforce SPF, DKIM, and DMARC on the domains we manage so that mail sent in your name can be trusted, and mail forged in your name can be rejected.
Never Sold
We do not sell, rent, or trade client data to anyone, for any purpose. Data is used only to perform the work you engaged us for.
Commitments we keep.
- 01
Confidentiality
Engagements are covered by written confidentiality terms. What we learn about your business stays within the team performing the work.
- 02
Vendor Diligence
Where we rely on third-party platforms to deliver a service, we select established providers and limit the data they receive to what the service requires.
- 03
Incident Response
If an incident affects your data, we will tell you promptly, explain what happened, and help you respond. We will not hide it.
- 04
Responsible Disclosure
Security researchers may report vulnerabilities in good faith to hello@cyberguardx.com. We will acknowledge and address valid reports.
Ask us anything about how we handle your data.
Security, privacy, and access questions are welcome before you ever sign an engagement.
Contact the Firm