Skip to content

Security

Security-conscious by design, conservative by default.

Govvisor is being developed for professional contexts where SR&ED, tax, payroll, financial, client, and proprietary technical information must be handled carefully.

No public uploadsNo login on this websiteNo payment processingNo database for this static siteNo sensitive public intake

Principles

Public website data boundaries are intentionally narrow.

This credibility site is static. It is intended for general inquiries, not confidential project disclosure.

Data minimization

The public website does not request confidential SR&ED files, payroll records, tax filings, financial statements, or proprietary project documents.

No public uploads

There are no file uploads on this website. Future pilot intake should use a secure, reviewed channel with explicit data handling terms.

Security review ready

Pilot conversations can cover hosting, access control, encryption, retention, incident intake, vendor review, and data residency expectations.

Clear escalation

Security questions and responsible disclosure inquiries should be directed to security@govvisor.com.

Pilot security

Sensitive data should only enter reviewed, approved channels.

Before any private pilot uses confidential information, Govvisor should complete a scoped security review with the participating organization.

  • Confirm what data is necessary and what should remain outside the pilot.
  • Document retention, deletion, export, and access expectations in advance.
  • Use secure transmission channels rather than public website forms or email attachments for sensitive files.
  • Maintain clear human accountability for review, advice, and client-facing decisions.

Review topics

Prepared for partner diligence.

Govvisor can discuss these topics with grant agencies, advisory firms, CPAs, consultants, and pilot partners.

Pilot review

Data residency

Discuss hosting geography, Canadian deployment expectations, and any partner-specific data location requirements.

Pilot review

Access control

Review role design, least-privilege access, administrative boundaries, and human-review workflows before pilot use.

Pilot review

Encryption

Confirm expected encryption in transit and at rest for any future secure pilot environment.

Pilot review

Retention

Define retention, deletion, export, and pilot-close procedures before confidential data is introduced.

Pilot review

Vendor review

Support reasonable security questionnaires, procurement review, and responsible disclosure intake.

Contact

Incident intake

Route potential security concerns to security@govvisor.com for review and coordination.

Have a security question?

Send responsible disclosure, vendor review, or security posture questions to security@govvisor.com. Do not include confidential client or project files in first-contact email.