Founded in 2000
risr/ recognises the critical importance of maintaining the confidentiality, integrity, security and availability of information hosted by us. This commitment is not just vital to the success of our business but also to the privacy and trust of our partners.
As a eAssessment platform provider, we are dedicated to offering clear and comprehensive information about our security practices, tools, and responsibilities. This transparency is key to empowering our customers, helping them make informed decisions and feel confident in selecting risr/ as their trusted partner.
Our Security Posture provides an overview of how we identify and mitigate risks, implement industry best practices, and continuously innovate to enhance our security measures. Should you require more detailed information, it is available upon request via the trust center. We value open communication and are committed to promptly addressing any queries or concerns. For further inquiries or specific questions, please feel free to reach out to us at info@risr.global.
Founded in 2000
|
|
Compliances (8)
Here are the compliance frameworks that Risr follows which showcases our adherence to industry-standard security guidelines and practices.
ISO 27001
Compliant
ISO 27001 is an internationally recognized standard for information security management, ensuring that we have a systematic approach to managing sensitive company and customer information. This certification means we have established, implemented, maintained, and continually improved a framework of policies and procedures that protect data against unauthorized access, breaches, and threats. Our ISO 27001 certification demonstrates our commitment to stringent security practices and rigorous risk management, giving you confidence that we handle and protect your data with the highest level of security and responsibility. By working with us, you’re choosing a partner dedicated to maintaining trust and upholding globally recognized security standards.
SOC 2
Compliant
SOC 2, or Service Organization Control 2, is a widely recognized standard for managing and safeguarding customer data based on five key principles: security, availability, processing integrity, confidentiality, and privacy. Being SOC 2 compliant means we have implemented rigorous internal controls and practices to protect your data, ensuring it is securely handled and consistently available while maintaining its accuracy and confidentiality. This certification demonstrates our commitment to maintaining the highest standards of data protection and operational integrity. Partnering with us gives you the assurance that your information is managed responsibly and securely, meeting the stringent requirements of SOC 2.
CSA Star
Compliant
CSA STAR Level 2 is an advanced certification in cloud security from the Cloud Security Alliance, combining rigorous assessment of cloud security controls with an independent audit to verify compliance with industry standards. Achieving CSA STAR Level 2 demonstrates our commitment to protecting your data with robust security practices specifically designed for cloud environments. This certification provides assurance that we adhere to internationally recognized security practices, mitigating risks associated with cloud services and enhancing transparency in how we manage and protect data. By partnering with us, you can trust that our cloud services meet stringent security standards, safeguarding your data with a high level of reliability and accountability.
Cyber Essentials Plus
Compliant
Cyber Essentials Plus is a UK government-backed cybersecurity certification that demonstrates our commitment to safeguarding your data with the highest security standards. This certification verifies that we have implemented robust protections against the most common cyber threats, ensuring that your information is secure across all our systems. Achieving Cyber Essentials Plus means we have undergone a thorough, independent technical audit to confirm that our defenses are both strong and actively maintained. By choosing us, you are partnering with a certified organization that prioritizes cybersecurity and works continually to protect your data and build your trust.
UK GDPR
Compliant
The UK General Data Protection Regulation (UK-GDPR) is a legal framework that sets guidelines for the collection, processing, and protection of personal data in the United Kingdom. Compliance with UK-GDPR means that we handle your data with the highest respect for your privacy and are committed to transparency, security, and accountability in every step of our data management. By being UK-GDPR compliant, we ensure that your personal information is collected and used responsibly, giving you control and peace of mind. Choosing us means partnering with a company that values and actively protects your privacy, adhering to the strict standards required by UK law.
GDPR
Compliant
The General Data Protection Regulation (GDPR) is a comprehensive data privacy law enacted by the European Union that sets strict guidelines for how organizations collect, process, and protect personal data. Our compliance with GDPR means we adhere to high standards of transparency, security, and accountability in managing your personal information, ensuring it is only used in ways you have consented to and protected against unauthorized access. By being GDPR compliant, we demonstrate our commitment to respecting your privacy rights and safeguarding your data, offering you confidence and peace of mind when you choose to work with us.
PIPEDA
Compliant
PIPEDA, or the Personal Information Protection and Electronic Documents Act, is Canada’s federal privacy law for private-sector organizations, setting guidelines for how businesses collect, use, and disclose personal information in the course of commercial activities. Being PIPEDA-compliant means we are committed to handling your personal data responsibly, ensuring it is safeguarded, and only used for the purposes you consent to. Our compliance with PIPEDA demonstrates our dedication to respecting your privacy rights, adhering to high standards of transparency, accountability, and security when it comes to managing your information. Working with us means partnering with a company that values and protects your privacy according to Canada’s strict data protection regulations.
Australian DPA
Compliant
The Australian Privacy Act, often referred to as the Australian Data Privacy Act (Australian-DPA), establishes strict requirements for how organizations collect, use, and manage personal information, ensuring that individuals’ privacy is respected and protected. By complying with the Australian-DPA, we commit to transparency, security, and accountability in handling your personal data, ensuring it is used responsibly and safeguarded against unauthorized access. This compliance demonstrates our dedication to upholding your privacy rights and meeting the rigorous standards of Australian privacy law, giving you confidence in our commitment to data protection and responsible data management. Choosing us means partnering with a company that prioritizes your privacy and actively works to maintain your trust.
