Please read the following terms carefully before using the application.

1. Purpose

This web application is designed to facilitate audit and risk management processes for technology companies seeking ISMS (ISO/IEC 27001) certification. It supports documentation, risk assessments, and compliance tracking to align with the standard's requirements.

2. Data Privacy

All audit data, documentation, and risk logs stored on the platform are securely encrypted. Users are responsible for maintaining the confidentiality of their credentials. The platform complies with applicable data protection regulations, including GDPR.

3. User Responsibility

• Users must ensure the accuracy and completeness of the information entered.
• All activity is logged for audit traceability and compliance tracking.
• Misuse of the platform for fraudulent or malicious reporting is strictly prohibited.

4. Limitation of Liability

While this application facilitates ISMS compliance, certification is issued by accredited bodies. The platform provider is not liable for certification outcomes or third-party audit results.

5. Data Retention & Deletion

Audit records and risk assessments are retained based on your company’s compliance policies. Upon termination of your subscription, all data can be exported and will be deleted from our servers after 30 days unless legally required to retain it.

6. Updates

The platform may be updated periodically to enhance features, security, or compliance with the latest ISO guidelines. Users will be notified in advance of any major changes.

7. Acceptance

By using this application, you agree to these terms and acknowledge that you understand your responsibilities under ISMS frameworks.