Compliance

Compliance

CyberAssistant is designed to help organizations meet their security awareness and testing compliance requirements.

Data Protection

• GDPR — Our platform supports GDPR compliance with data isolation, access controls, and data processing agreements
• Data Residency — On-premise deployment option for organizations with data sovereignty requirements
• Data Minimization — We collect only the data necessary to provide our services

Security Standards

• SOC 2 — Our infrastructure and processes align with SOC 2 Type II controls
• ISO 27001 — Security management practices aligned with ISO 27001 framework

Industry Frameworks

CyberAssistant helps organizations meet requirements across multiple compliance frameworks:

• NIST Cybersecurity Framework — Security awareness training and testing
• PCI DSS — Requirement 12.6 for security awareness programs
• HIPAA — Security awareness and training requirements
• CIS Controls — Control 14: Security Awareness and Skills Training

Questions

For compliance inquiries, please contact our team.