Security Statement

We maintain a security program that includes administrative, technical, and organizational controls designed to protect confidentiality, integrity, and availability of data.

• Role-based access controls and least-privilege principles.
• Multi-factor authentication where appropriate.
• Periodic review of user access and prompt revocation of obsolete accounts.

• Use of secure hosting and managed cloud services.
• Patch and vulnerability management processes.
• Encryption in transit using current TLS standards.
• Encryption at rest where supported by the underlying platform and use case.

We employ logging and monitoring controls to support operational visibility, anomaly detection, and incident investigation. Logs are retained based on operational and legal requirements.

We evaluate key service providers for security suitability and contract with providers that maintain appropriate security standards for their services.

Team members with access to sensitive systems or data are expected to follow security policies and confidentiality obligations, and to complete security awareness training as appropriate to role.

We maintain incident response procedures to identify, contain, investigate, and remediate security incidents. Where required by law or contract, affected parties are notified in accordance with applicable obligations.

We use resilience and backup practices appropriate to the systems and services we operate, with periodic review of recovery processes.

Security is a shared responsibility. Clients remain responsible for secure configuration and operation of their own systems and for timely implementation of agreed recommendations.

Security questions or reports may be directed to:
Nscope Advantage
1631 Rock Springs Rd, PMB 222, Apopka, FL 32712
Phone: 321-273-7300