Truv is committed to maintaining a robust security posture through continuous monitoring and regular testing of its systems. While specific frequencies of vulnerability assessments are not publicly disclosed, Truv employs several proactive measures to identify and mitigate potential security risks:
-
Continuous Monitoring: Utilizing tools like Vanta, Truv actively monitors its security controls to ensure compliance and promptly address any anomalies.
- Regular Penetration Testing: Truv conducts penetration testing to identify and remediate vulnerabilities within its infrastructure.
- Independent Security Audits: As part of its SOC 2 Type II and ISO 27001 compliance, Truv undergoes annual third-party security audits to verify the effectiveness of its security controls
- Responsible Disclosure Policy: Truv encourages security researchers and users to report potential vulnerabilities through a dedicated email channel, fostering a collaborative approach to security.
These measures underscore Truv's dedication to maintaining the security and integrity of its systems and data.