Trust

Trust & Assurance

Certivanta is built around an explicit commitment: engineering trust in complex systems. This page brings together our public trust surfaces — security, privacy, and responsible AI posture — in one place.

Operating principles

Confidentiality by default: limit data collection and access to what is necessary.
Pragmatic risk management: controls proportionate to context, impact, and likelihood.
Clear accountability: defined ownership for decisions, assets, and governance.
Transparency of intent: we explain what we are doing, why, and what boundaries apply.

SPF / DKIM / DMARC aligned MTA-STS enabled TLS reporting enabled Machine-readable disclosures

(We publish trust signals where appropriate; this is an evolving posture as Certivanta grows.)

Security

We treat security as an operating discipline: controlled access, sensible baselines, and fast response to credible issues.

Security page → security.txt →

Report issues: security@certivanta.com

Privacy

We respect data minimisation, purpose limitation, and appropriate safeguards. Privacy requests and enquiries are handled via the DPO mailbox.

Privacy page →

Contact: privacy@certivanta.com

Responsible AI

Where AI is used to support delivery, we apply governance and human oversight appropriate to the context and risk. The aim is reliable judgement, clear boundaries, and accountable decision-making.

If you require a specific AI usage statement for procurement, we can provide it during engagement setup.

Reporting & transparency

TLS reports: tls@certivanta.com
DMARC reports: dmarc@certivanta.com
Abuse reports: abuse@certivanta.com

Trust host: mta-sts.certivanta.com (MTA-STS policy, BIMI asset, and related endpoints).

Need assurance material?

If you are completing procurement due diligence (security, privacy, or AI governance questionnaires), we can provide appropriate statements and engagement-specific documentation.

Email: contact@certivanta.com