Personnel Security and Governance

Dual Code maintains a comprehensive set of practices to ensure personnel involved in delivering and supporting Marketplace uphold the highest standards of information security and governance.

All employees, contractors, and third-party service providers are subject to background verification in accordance with applicable local laws, regulations, and contractual obligations. Employment agreements include provisions that require adherence to Dual Code’s internal information governance, confidentiality, and security policies.

Documented policies and procedures are in place to manage changes in employment status, including onboarding, role changes, and termination. These processes ensure that access to systems and data is granted or revoked appropriately based on an individual's current role and responsibilities.

To promote ongoing vigilance, all personnel participate in mandatory security and privacy awareness training at least once per year, with additional role-specific training provided as needed. These programs reinforce key policies, emerging threats, and secure practices relevant to protecting client and system data.

Access to tenant or customer credentials is managed in accordance with the principle of least privilege. Dual Code documents and enforces internal access control procedures that define how permissions are granted, reviewed, and approved based on job function. Only authorized personnel have access to sensitive client environments, and those permissions are regularly audited to ensure compliance with internal policies and contractual requirements.