TrueHaven Capital

Security

  1. Information Security Program
    • We have a Written Information Security (WISP) aligned to industry standards and continuously evaluate ways to improve our security posture.  Our WISP as well as other policies and procedures are shared with all employees.
    • Legal: Privacy Policy
  2. Internal Security Measures
    • Identity and Access Management
      • All our employees have a unique login with access.
    • Access to Data
      • Access to client data is limited to authorized individuals who require it for their job. 
    • Passwords
      • We enforce password complexity standards, leverage Multi-Factor Authentication where possible and employ a host of other best practices related to password management.​
    • Network Security
      • Our internal network has various defense in depth measure and practices the principle of zero trust via Secure Gateways.
    • Security Awareness
      • All our employees receive security awareness training upon hire and continues throughout the year.
    • Independent Assessments
      • Bi-annual cybersecurity assessments conducted by a vetted independent 3rd party industry expert.
      • image.png
    • Responsible Disclosure
      • If you believe you have discovered a vulnerability within TrueHaven Capital, please submit a report to us by emailing mwakefield@truehaven.net
  3. Contact
    • If you have any additional questions regarding TrueHaven’s security measures, please email us at mwakefield@truehaven.net