Trust Center

Our Security Promise

At NERV Corporation, security and trust are fundamental to everything we do. Our Trust Center provides full transparency about our security, privacy and compliance practices.

Data Security

Secure Infrastructure:

• Certified data centers with robust physical measures
• AES-256 encryption for data at rest and data in transit
• Segmented network architecture with advanced firewalls
• 24/7 monitoring of threats and vulnerabilities

Access Controls:

• Mandatory multifactor authentication
• Principle of least privilege
• Regular reviews of access permissions
• Complete audit trail

Certifications and Compliance

International Standards:

• SOC 2 Type II - Security and Availability Controls
• PCI DSS Level 1 Certification for payment processing

Regular Audits:

• Quarterly penetration tests
• Ongoing vulnerability assessments
• Monthly internal safety reviews

Privacy and Data Protection

Privacy Principles:

• Data minimization - We only collect what we need to collect
• Transparency in data processing
• User control over personal data
• Protection by design and by default

Data Management:

• End-to-end encryption
• Anonymization when possible
• Limited retention according to established policies
• Secure data deletion

Incident Response

Preparation:

• Tested and updated incident response plan
• Specialized team available 24/7
• Clearly defined escalation procedures
• Transparent communication with affected customers

Response Process:

1. Immediate detection and analysis
2. Containment and eradication
3. Post-incident recovery and monitoring
4. Lessons learned and improvements

Business Continuity

High Availability:

• Redundant architecture with multiple data centers
• Automated and regularly tested backups
• 99.9% guaranteed uptime
• Disaster recovery procedures

Risk Management:

• Regular enterprise risk assessments
• Updated contingency plans
• Comprehensive cybersecurity insurance
• Continuous threat monitoring

Supplier Management

Third Party Evaluation:

• Rigorous due diligence prior to contracting
• Regular audits of critical suppliers
• Continuous compliance monitoring

Transparency in Incidents

Proactive Communication:

• Immediate notification of security incidents
• Regular updates during resolution
• Detailed post-incident reports
• Real-time service status portal

Training and Awareness

Security Program:

• Mandatory training for all employees
• Regular phishing drills
• Updates on new threats

Available Documentation

Downloadable Resources:

• Security whitepapers
• Best practice guides

Customer Portal

Personalized Access:

• Customer-specific security dashboard
• Detailed audit trails
• Customized security alerts
• Specific compliance documents

Security Team Contact

For security and compliance related inquiries:

• • Security Email: security@nervcorp.co
  • Report Incidents: incident@nervcorp.co
  • Compliance: compliance@nervcorp.co

 

Physical Address: NERV Corporation Betnaia, La Paz Avenue Panama City, Panama Tel: +507 833 5115

Trust Center Updates

This Trust Center is updated regularly to reflect our current security practices and new certifications. The last update was in July 2025.

Change History:

• July 2025: Initial launching of the Trust Center
• Implementation of new encryption controls