Trust Center

The trust we ask for, documented.

Clients hand us their most sensitive accounts, decisions, and data. This is how we protect them, stated plainly, so you can hold us to it.

Security Posture

How we protect your information.

01 · Access

Least Privilege

Access to client systems and data is granted narrowly, tied to a specific engagement, and reviewed on a regular cadence. When work ends, access ends.

02 · Data

Encryption

Sensitive data is protected in transit and at rest using current, industry-standard encryption. Credentials are stored in dedicated secret managers, never in plain files.

03 · Accounts

Advanced Protection

For executive and administrator accounts, we lead with Google Advanced Protection and, for Microsoft 365 organizations, Microsoft AccountGuard, the strongest practical defenses against takeover.

04 · Identity

Phishing-Resistant MFA

We favor hardware security keys and passkeys over codes and prompts, closing the gap that most account takeovers exploit.

05 · Email

Authenticated Mail

We enforce SPF, DKIM, and DMARC on the domains we manage so that mail sent in your name can be trusted, and mail forged in your name can be rejected.

06 · Data Use

Never Sold

We do not sell, rent, or trade client data to anyone, for any purpose. Data is used only to perform the work you engaged us for.

Governance

Commitments we keep.

  • 01

    Confidentiality

    Engagements are covered by written confidentiality terms. What we learn about your business stays within the team performing the work.

  • 02

    Vendor Diligence

    Where we rely on third-party platforms to deliver a service, we select established providers and limit the data they receive to what the service requires.

  • 03

    Incident Response

    If an incident affects your data, we will tell you promptly, explain what happened, and help you respond. We will not hide it.

  • 04

    Responsible Disclosure

    Security researchers may report vulnerabilities in good faith to hello@cyberguardx.com. We will acknowledge and address valid reports.

Questions of Trust

Ask us anything about how we handle your data.

Security, privacy, and access questions are welcome before you ever sign an engagement.

Contact the Firm