Our Trust
Our Commitment to Privacy and Cybersecurity
Ennoble First maintains the highest standards of integrity and ethical behavior, and this extends fully to how we manage data privacy and cybersecurity. We apply industry-leading data privacy and cybersecurity standards in our day-to-day business. Ennoble First has a duty to our people, customers, and partners to safeguard and handle data, systems, and technology in line with the continually-developing regulatory framework.
Below will outline our approach to cybersecurity and data privacy, including our broad policy, governance and compliance initiatives. This will be regularly updated as industry standards and legal requirements evolve.
Cybersecurity
We utilize industry-standard frameworks with which to provide appropriate governance of our corporate cybersecurity efforts. To that end, the National Institute of Standards and Technology (NIST) 800-37 Risk Assessment methodology is used every day as our standard methodology for assessing risk related to hardware, software, systems, and cybersecurity controls.
Ennoble First is currently up to date with our NIST 800-171 assessment of our Corporate System Security Plan and related controls to ensure that we are compliant with the 800-171 requirements aligned to the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 clause. Our business relies entirely on the ability to assure and attest to the confidentiality, security, integrity, and availability of data and systems.
Data Privacy
Protecting personal information is a commitment we make to our people, customers, and partners and is an essential part of doing business. We know that improperly handling personal information can have serious consequences for our people, our company, our partners and our customers. Thus, data privacy is integral to our Code of Conduct and training programs.
