Compliance
Our commitment to meeting industry standards and regulatory requirements
Our Compliance Approach
At Gardien Security, compliance is not just about meeting minimum requirements—it's about building trust through transparency, security, and accountability. We are committed to maintaining the highest standards in data protection, security practices, and regulatory compliance.
While we are actively working toward formal certifications, we have implemented comprehensive security and privacy controls that align with industry best practices and international standards.
Compliance Framework
Key areas of our compliance program
Data Privacy
Commitment to protecting personal data and respecting privacy rights
- Data minimization principles
- Purpose limitation
- Storage limitation
- Data subject rights support
Security Standards
Industry-leading security practices and controls
- Encryption at rest and in transit
- Regular security assessments
- Incident response procedures
- Vulnerability management
Access Controls
Strict access management and authentication
- Multi-tenant data isolation
- API key authentication
- Audit logging and monitoring
- Least privilege access
Data Processing
Transparent and lawful data processing practices
- Clear data processing agreements
- Customer data ownership
- Data portability support
- Right to deletion
Data Protection & Privacy
We are committed to protecting personal data and respecting privacy rights in accordance with global data protection principles.
Privacy Principles
- Transparency: Clear communication about data collection and processing
- Consent: Explicit consent for data processing where required
- Minimization: Only collect and process necessary data
- Accuracy: Maintain accurate and up-to-date information
- Security: Implement appropriate technical and organizational measures
- Accountability: Take responsibility for data protection compliance
Data Subject Rights
We support the following data subject rights:
- Right to access your personal data
- Right to rectification of inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
Security & Compliance Best Practices
Ongoing commitment to security excellence
Regular Audits
Quarterly security audits and annual penetration testing
Employee Training
Mandatory security and privacy training for all personnel
Vendor Management
Careful vetting and monitoring of third-party service providers
Incident Response
Defined procedures for security incidents with customer notification
Data Retention
Clear policies for data retention and secure disposal
Business Continuity
Disaster recovery and business continuity planning
Compliance Roadmap
We are actively working toward achieving formal certifications and expanding our compliance program.
Current State
- • Security-first architecture and development practices
- • Comprehensive data protection measures
- • Regular security audits and assessments
- • Privacy-by-design principles
In Progress
- • Formal compliance framework implementation
- • Third-party security assessments
- • Documentation and policy enhancement
Compliance Questions?
If you have questions about our compliance program, data protection practices, or need specific compliance documentation, please contact us.
gabrieljabour@gardiensecurity.com • Espirito Santo, BR