Curiosity Workspace Security Documentation

Welcome to the Curiosity Workspace Security Documentation.

This website is a comprehensive resource detailing the security policies, processes, and guidelines for Curiosity GmbH. It is designed to ensure the confidentiality, integrity, and availability of data, aligning with industry standards and frameworks (such as ISO 27001, SOC2, and NIST).

Contents

This documentation covers the following top-level security domains:

1. Access Control Policy: Defines requirements to protect confidentiality, integrity, and availability.
2. Cryptography Policy: Outlines the approved cryptographic algorithms, encryption standards, and key management.
3. Certificates & Governance: Governs digital certificates and trust chains.
4. Data Protection Policy: Ensures the protection of sensitive and regulated data.
5. Incident Management Process: Defines how security incidents are detected, managed, and resolved.
6. Operations Security Policy: Safeguards operational infrastructure and processes.
7. Personnel Security Policy: Ensures personnel do not introduce security risks.
8. Service Level Agreement (SLA) Policy: Sets the service expectations and metrics.
9. Vulnerability Management Process: Details the identification and remediation of vulnerabilities.

Use the sidebar navigation to explore each domain in detail.

For requesting access, please reach out to hello@curiosity.ai

Curiosity GmbH - https://curiosity.ai | Documentation