Data Ownership, Information Security and Third Party Risk Management
We work with some of the largest global investment banks, handling their private and confidential information. We maintain a state of the art information and cyber security posture and have all the controls and documentation in place to not only give peace of mind to our customers, but also to minimise the administrative friction in the onboarding process.
We can provide externally verified mappings of our security controls for the most important global standards, including ISO 27001, NIST 800.53, MITRE ATT&CK Framework CR.31 and of course GDPR.
We have satisfied the vendor onboarding processes of some of the leading investment banks and are externally certified by FSQS and CyberGRX.
FSQS (Financial Services Qualification System) is a community of financial institutions collaborating to agree a single standard for managing the increasing complexity of third and fourth-party information needed to demonstrate compliance to regulators, policies and governance controls. Bots has undergone an evidence-validated assessment by FSQS
CyberGRX is the world’s largest cyber risk Exchange with over 100,000 participants. The CyberGRX Exchange provides visibility and insight to manage an organizations complete third-party cyber risk management journey. Bots has undergone an evidence-validated assessment by CyberGRX vetting the maturity of our enterprise security program
ISO/IEC 27001 Compliance
We operate a comprehensive and fully implemented Information Security Management System in compliance with ISO/IEC 27001 standards
External Penetration Tests
We undergo regular, external penetration tests of our applications and infrastructure by a leading cybersecurity services firm
Customer Data Ownership
Customers retain full ownership and control of all proprietary data processed through our platform. We will never share or sell customer data
Cloud Security & Encryption
Our data and infrastructure is maintained securely within Microsoft Azure. Any sensitive data is encrypted in transit and at rest