Legal

Security

Security expectations for client documents, credentials, sensitive business information, third-party processors, and supporting systems.

Policy coverage

Check: Clients own official account credentials.
Check: Do not submit secrets through public forms.
Check: Use approved document exchange paths.
Check: Gov Register uses reasonable technical and organizational measures for personal data.
Check: Limit sensitive information to what is required for the service.

Check: Clients should keep official account credentials under their own control.
Check: Do not submit passwords, one-time codes, banking credentials, classified information, export-controlled information, unnecessary personal identifiers, or files through public forms.
Check: Use approved document-exchange paths for solicitation packages and sensitive service documents after intake and advisor confirmation.
Check: Gov Register will not ask for credentials through public contact forms.

Check: Gov Register uses reasonable measures designed to protect personal data and client materials against unauthorized access, misuse, loss, disclosure, alteration, and destruction.
Check: Measures may include encryption in transit, access controls, authentication, role-based access, staff training, security reviews, and approved systems for document handling.
Check: Third-party processors that support hosting, CRM, scheduling, email, billing, analytics, support, secure document exchange, or software infrastructure may access data only for specific tasks performed on behalf of Gov Register or Gov Contract Finder.

Check: Limit document access to the service context and assigned follow-up path.
Check: Use the existing main app CRM and scheduling systems for operational handoff instead of creating duplicate GovRegister stores.
Check: Public forms should be used for intake only, not for solicitation files, credentials, bank details, or sensitive supporting documents.
Check: Report suspected security issues through team@govcontractfinder.com or the published contact path.

Check: Provide truthful, accurate, and authorized information.
Check: Review documents before submission to Gov Register, Gov Contract Finder, or official systems.
Check: Maintain control of official account credentials, login recovery methods, and one-time codes.
Check: Tell Gov Register promptly if submitted information should be corrected, restricted, deleted, or handled through a different approved channel.

Check: This page explains website policy expectations for visitors, leads, and clients.
Check: Service-specific agreements, signed scopes, and official government rules may control specific situations.
Check: Contact Gov Register before submitting sensitive information if you are unsure which intake or document-exchange path is appropriate.

Use the Fit Check to route your business to the right foundation, certification, pipeline, bid, GSA, grant, or vendor-management path.