Security, Privacy, & Compliance
Minerva CQ deeply values the needs of our clients and partners, and their customers, consistently demonstrating an exceptional level of empathy. Our unwavering commitment to meeting their needs drives us to offer an extensive range of information security and privacy assurance solutions, ensuring utmost confidence. Our platform is meticulously designed with security as a foundational principle, enabling us to deliver unparalleled protection. We are focused on continuously enhancing our information and security compliance portfolio, motivated by the following compelling reasons.
Improvement through compliance
By adhering to the appropriate and relevant security standards, compliance and certification, we actively foster security enhancement throughout our products and services, diligently driving continuous improvement.
​
​
​
​
Internal confidence
The continual advancement of our compliance portfolio encompasses a range of external assurance activities, instilling unwavering confidence in our business that security measures are not only implemented and maintained, but consistently refined for ongoing improvement.
Commitment to security
The ongoing evolution of our compliance portfolio exemplifies Minerva CQ's dedication to internal security enhancements and external security assurance. Our leadership plays a pivotal role in fostering support for information security and compliance through resource allocation, a strong organizational culture, and unwavering diligence.
External assurance
Ensuring the integrity of our compliance portfolio entails conducting comprehensive internal and external audits, involving independent entities that meticulously assess our security measures. These audits serve as a validation of our ability to meet and uphold stringent security objectives, offering our customers and partners the utmost confidence in our commitment to their protection.
Third party attestations
Independent third party attestations demonstrate our continued commitment to a certified level of assurance. Minerva CQ conducts an annual SOC2 Type 2 audit by a reputable independent third-party certification to enable our customers to confidently conduct more sensitive interactions on our platform. In addition to the general measures we take on privacy, our Privacy Policy also contains detailed information about our alignment with GDPR as both a Data Processor and Data Controller.
SOC2 Type 1
is an attestation of controls at a service organization at a specific point in time. Attests that the controls are suitably designed and implemented.
SOC2 Type 2
is an attestation of controls at a service organization over a minimum six-month period. Attests that the controls are suitably designed and implemented, and attests to the operating effectiveness of the controls.
Third Party Penetration Testing
Identifying, assessing, and remediating risks for cybersecurity. Ongoing.
General Data Protection Regulation
How Minerva CQ helps support our customers on their GDPR compliance journeys (in progress)
Hitrust
Comprehensive, flexible and efficient approach to regulatory compliance and risk management. (In progress)
ISO 27001:2022
International standard designed to guide organizations to maintain strong cybersecurity systems and processes.
(in progress)