Incident Management Policy.

We are committed to maintaining our systems’ and data’s security and integrity.

While our working environment is Mac-based and relatively low-risk, we acknowledge the importance of being prepared for potential security incidents.

Incident Response Procedures

We monitor our systems for unusual or suspicious activity.

If an incident is suspected, we investigate immediately to confirm the nature and scope.

Where necessary, we isolate affected systems and take steps to prevent further impact.

A root cause analysis is conducted post-incident, with actions taken to reduce future risk.

Stakeholder Notification SLA

In the event of a confirmed incident that impacts client data, project continuity or business operations, we commit to notifying all affected stakeholders within 24 hours of confirmation.

Where preliminary investigation suggests potential risk but details are still emerging, we may provide an early advisory within the same timeframe, followed by updates as more information becomes available.