We have a Written Information Security Program (WISP) aligned to industry standards and continuously evaluate ways to improve our security posture. Our WISP as well as other policies and procedures are shared with all employees.

All our employees have a unique login with access.

Access to client data is limited to authorized individuals who require it for their job.

We enforce password complexity standards, leverage Multi-Factor Authentication where possible and employ a host of other best practices related to password management.

Our internal network has various defense in depth measures and practices the principle of zero trust via Secure Gateways.

All our employees receive security awareness training upon hire and continues throughout the year.

Bi-annual cybersecurity assessments conducted by a vetted independent 3rd party industry expert.

If you believe you have discovered a vulnerability within TrueHaven Capital, please submit a report to us by emailing mwakefield@truehaven.net.