A contract satisfies our infosec program and cyber insurance requirements, confirmed by a corporate legal team. Our role is to manage enterprise risk and potential exposure within our risk appetite, not eliminate it.
(already minimizing sensitive data storage and transit whenever possible, as an entity operating in a regulated industry)