.svg)
Alerts and Reminders
Customer Service Ops
Operations
Marketing
Security & ID
Business Continuity Planning
Logistics
Retail
Customer Service
Insurance
Public Sector
Finance
Education
Healthcare
Utility
AWS
Wholesale
Integrations
White-labelled Platform
Developer Tools
Glossary
APIs
Scam Protection
Accreditations
FAQs
Blog
Product Updates
About
Contact us
Modica Careers
Privacy.svg){kind=small}
.svg){kind=small}
Client Security Audits
Modica is committed to security and privacy across all its services to protect its customers and their most valuable asset, their data. Our platform and solutions are:
- Externally assessed and audited by globally recognised organizations
- Aligned with industry frameworks and standards such as SOC 2 and the Australian Information Security Manual (ISM)
- Round the clock monitoring and logging
- Backed by our security experts
Some customers need to conduct more in-depth security reviews and Modica provides two additional services for this.
Standard Security Review
This is a 'light touch' review whereby customers can initiate an audit with the expectation that we complete their spreadsheet questionnaire or use a system of their choice. We will typically have an online walkthrough of our attestations and review security documentation such as penetration testing reports, policies and other similar documents.
Requirements
1. The first hour of this service is part of the standard Modica solution, after which an hourly consulting fee may appl
2. A statement of work will be required for work over and above the first hour of work
Exclusions
Modica documentation is not provided as part of this review
Enhanced Security Engagement
Some customers have significant security requirements and will ask Modica to work with them on a full external audit of Modica's security posture which may include an external assessor as part of the process. As part of the process, the client would sign an NDA (Non Disclosure Agreement) to ensure all sensitive information is protected and ensure trusted collaboration. This would be followed by a detailed Statement of Work (SOW) clarifying the requirements and costs
Requirements
1. NDA
2. Statement of Work
Exclusions
Documents or other similar artifacts can be provided under NDA. If these are sensitive e.g. penetration testing reports, risk registers and policies, then an online review will be conducted or redacted portions of the documents can be provided.