Information Security Statement

Corporate Connect applies a risk-based information security framework to protect personal data, confidential client information and critical business systems.

1. Security objectives

• Preserve confidentiality, integrity and availability of information assets.
• Reduce operational and cyber security risk through proportionate controls.
• Support legal and regulatory compliance obligations.

2. Core controls

• Role-based access control and least-privilege access principles.
• Strong authentication and access lifecycle management.
• Encryption in transit and appropriate encryption controls for stored data.
• Security logging, monitoring and incident response procedures.
• Supplier due diligence and contractual security requirements.

Where services are delivered by independent third-party providers, those providers are responsible for implementing and maintaining their own security controls and legal compliance obligations under their own governance frameworks.

3. Operational resilience

We maintain continuity and recovery measures to support service resilience and minimise business interruption.

4. Awareness and governance

Security responsibilities are embedded across teams and supported by policy controls, periodic review and governance oversight.

5. Reporting security concerns

If you identify a potential security issue relating to Corporate Connect systems or data, please contact info@corporate-connect.co.