Data Handling Policy

We request only the data needed to scope and deliver an engagement. Where possible, testing is performed against environments containing synthetic or de-identified data.

Engagement data is stored in access-controlled systems. Internal access is limited to personnel directly involved in delivering the engagement and is logged where appropriate.

Engagement artifacts are encrypted in transit and at rest using current industry-standard mechanisms.

Engagement artifacts are retained for the period agreed in the engagement contract — typically sufficient to support retesting — and then securely deleted. Retention periods may be shortened or extended by written agreement.

When the retention period ends, engagement data is securely deleted from all working systems and any associated backups in line with documented procedures.

Any subprocessors used to support an engagement are disclosed during scoping and bound by confidentiality obligations consistent with this policy.

Any suspected incident affecting client data is investigated promptly and reported to the affected client in line with the engagement contract.