Skip to content

Trust Center

Security practices, compliance readiness, and transparency for enterprise procurement reviews.

Certifications & Compliance

Documentation available for qualified diligence reviews

On Request

SOC 2 Type II Readiness

Control mapping and readiness documentation are available for qualified diligence reviews under NDA.

Documentation: Current readiness package

Request Report
Readiness

ISO 27001:2022 Mapping

ISMS control mapping and implementation evidence can be reviewed during procurement diligence.

Documentation: Current readiness package

Request Report
Under Review

WCAG 2.2 AA

Accessibility review materials and remediation notes are available for customer review.

Documentation: Current review cycle

Request Report

Security Practices

How we protect your data

Data Encryption

Encryption controls are designed around AWS managed services, TLS in transit, and KMS-backed key management where customer data is stored.

Data Residency

Customer data residency requirements are reviewed per engagement and designed around approved AWS regions.

Security Monitoring

Operational monitoring, vulnerability review, and incident workflows are maintained for production systems.

Audit Logging

Audit logging requirements are defined per engagement and retained according to the applicable customer and regulatory requirements.

Reliability Targets

Service objectives reviewed during engagement setup

99.95%
Platform Uptime Target

Target service objective for managed production workloads

< 4 hours
Incident Response Target

Target acknowledgement window for business-critical incidents

< 1 hour
Security Response Target

Target initial response window for security incidents

99.9%
API Availability Target

Target service objective for supported REST APIs

Accessibility Conformance

Accessibility review and remediation materials

VPAT® and Accessibility Conformance Report (ACR)

Accessibility materials are maintained for procurement review and implementation planning.

WCAG 2.2 Level AA

Assessment scope and remediation notes available on request

Section 508

Mapping available for customer review

EN 301 549

Mapping available where applicable

Current package shared after request review.

Complete Security Package

Request security and compliance documentation for procurement and due diligence.

Package Contents

  • SOC 2 readiness and control mapping
  • ISO 27001:2022 control mapping
  • Accessibility review materials
  • Security architecture summary
  • Data Processing Agreement (DPA) template
  • Business Associate Agreement (BAA) template
  • Incident Response Plan summary
  • Disaster Recovery & Business Continuity Plans
  • Security testing and remediation summary
  • Vendor security questionnaire support
Request Security Package

Documentation is shared after request review. Contact security@nxgnt.com for diligence questions.

Security Questions?

Our security team is available to answer procurement questions, schedule security reviews, or discuss custom compliance requirements.