Givance Trust Center
Givance is in compliance with security best practices, has implemented and is monitoring comprehensive controls, and maintains policies to outline its security procedures.
Compliance
Resources
Change Management Policy
Information Security Policy
Business Impact Assessment Policy
Information Security Management System Communication Plan Policy
Oversight Committee Charter
Controls
Access control procedures
Access review of infrastructure
User list with assigned roles and privileges
Physical access control systems
VPN access
Encryption of data
Database backups
Data disposal policy
Privacy and confidentiality governance charter
Backup and recovery policy
Source code tool
Web application firewall
Vulnerability scanning
Sample code changes
Outsourced Development Management
Intrusion detection tool
Infrastructure baseline hardening policy
SSL/TLS certificates for infrastructure
Network diagram
Monitoring, measurement, analysis and evaluation
Security incident list
Alerts and remediation
Breach notification communication
Whistleblower policy
Log management tool
ePHI risk assessment report
Vendor management program
Vendor onboarding
Vendor termination
Vendor list
New employee and contractor agreements
List of newly hired employees & contractors
Employee handbook
List of terminated employees & contractors
HRS-7
Multi-availability zones
Asset register maintaining
Risk and Governance Executive Committee meeting minutes
Risk management program
IAC-6
IAC-3
CRY-3
IAC-0
IAC-7
Subprocessors
GitHubCode & Build Security
OpenAIAI & ML Services