> Help > All Categories > Enterprise Security Assessment > Risk and Security Management > Compliance

Do you have an internal audit, risk management, or compliance department, or similar managerial oversight?

book reader icon
1 Minute
11/19/2024
facebook logo gray
linkedin logo gray
mail logo gray

Yes. As a small LLC, continuous monitoring and oversight are performed directly by our management and appropriate consultants, who are assessing, identifying and tracking resolutions of outstanding regulatory issues as part of their daily business.

Last update 2 months ago

Do you have a formalized Risk Governance Plan that defines Enterprise Risk Management program requirements?

Not necessary. IT security policies, incident management, regular external security testing, and extended liability and cyber insurance are in place.

Do you have a documented program for managing third-party risks in place?

No. As a small LLC, all of QR Planet's operational partners are known to management and are being carefully assessed and monitored. No formalization necessary.

Do you have an assigned individual responsible for relevant issues in regards to third-party risk management?

Yes. As a small LLC, all of QR Planet's operational partners are constantly monitored by management directly in regards to all relevant issues.

Do your employees undergo training of company expectations regarding all compliance and ethics responsibilities?

If applicable, QR Planet's employees undergo annual training concerning the non-disclosure of insider information and any other relevant compliance and ethics responsibilities.

Do you have documented policies in place to ensure that processing client scoped data is limited, and in compliance with applicable law?

QR Planet is fully GDPR complient. Access, transmission, processing, disclosure, and retention of client scoped data is in compliance with applicable law.