Security Policy

NXTKey Corporation (NXTKEY) will ensure security is built in every aspect of service delivery life cycle from planning, designing, developing, testing, and operations.

We will follow our Information Security Management System (ISMS) security policies, guidelines and processes to provide information and data security for all our services. Our team applies Department of Homeland Security (DHS), Federal Information and Security Management Act (FISMA), Federal Information Processing Standard (FIPS), and Health Insurance Portability and Accountability Act (HIPAA) standards, policies and procedures to all our services / solutions. The NXTKEY team is trained in how to support critical applications, exchange sensitive data, and enforce authorization requirements based on federal information classification and sensitive guidelines.

All NXTKEY information and data is subject to the CIA Triad ( Confidentiality, Integrity and Availability ) model. NXTKEY also follows the Separation of Duties (SoD) concept of having more than one person required to complete a task. This helps as an internal control intended to prevent fraud and error.