Overview
Our Trust and Security Analysts, who make up the White Glove Onboarding Team (WGO), will use the information you provide to draft your Trust Center as part of your onboarding process with SafeBase.
The more content added to your Trust Center, the less likely a prospect, customer, etc, will request a questionnaire to be completed.
Additionally, the Trust Center and its Knowledge Base are excellent resources for internal team members to gather and use information about your company and products.
Content to send our team
Please send us any / all of the items listed below so we can begin drafting your Trust Center.
Please make sure to provide passwords to any password-protected documents.
SOC 2, ISO, PCI DSS, etc
These items will be used to extract information for content and will be uploaded to the compliance section of the Trust Center.
Security whitepaper and other security-related documents
These can include data flow diagrams, legal documents (cyber insurance, W-9, etc.), and any other items you think would be appropriate for the Trust Center.
Policies
We understand you may not want to share some of your internal policies with Trust Center visitors. However, general content from your policies regarding various security information is useful when drafting the Trust Center.
3-5 of your best questionnaires
A Favorite Questionnaire(s)
This should be a questionnaire you’ve dedicated the most time and collaboration to. This is usually a questionnaire you’ve completed for a high-value contract or big logo.Standardized Questionnaires (SIG, CAIQ, VSA, HECVAT, VSAQ)
These are good to have. Unfortunately, they usually only contain yes/no answers because few fill out the comment section. However, there are instances where a prospective customer will take one of these in lieu of completing their custom questionnaire, so it’s an easy win.AI-Focused Questionnaires
With AI being the hot topic in the past year, it’s essential to have a bank of AI questions. Adding some type of AI-focused questionnaire your team has spent time collaborating on. We're seeing these questions pop up very frequently. Whether your product uses AI or not, you should have some content addressing it.Privacy-Focused Questionnaires
Let’s face it. A crucial part of a risk assessment is data privacy. Choosing a privacy-focused questionnaire your legal team has dedicated a lot of time to. That way, many Privacy/Legal/HR questions will be covered.
Standard questionnaires (SIG, CAIQ, VSA)
These will be uploaded to the Self-Assessments card on the Trust Center and added to the Knowledge Base (KB).
If you don’t have quality questionnaires to upload, SafeBase has created a couple of high-level questionnaires to help you get started.
This questionnaire is designed to answer the most common high-level questions asked during a security review.
It is also considered, at a minimum, the content required in your Knowledge Base to use our AI Questionnaire Answering service (AIQA)
This is a privacy-centric questionnaire created by the SafeBase team to cover generalized privacy questions.