# Trust & references — Attri Edge

Trust & references This page tells you what to expect from working with Attri Edge — and what trust signals you should look for from any compliance operations partner. Confidentiality and NDA Every engagement starts with a one-page mutual NDA, signed before any substantive technical discussion. If you have a standard NDA you prefer, we use yours. The diagnostic call is treated as if you’ve signed an NDA from minute one. Anything discussed remains confidential whether you convert to a retainer or not. Data handling during engagements During retainer engagements, we typically need access to: Your compliance platform (Vanta, Drata, Sprinto) as an “Advisor” or “Consultant” role Your ticketing system (Jira, Linear) as an “Observer” or “Member” Your scanner outputs (Tenable, Qualys, Snyk) as a “Viewer” Your identity provider (Okta, Google Workspace) as an “Auditor” or “Read-only” role A shared Notion or Airtable workspace we set up for your engagement We do not typically need: Production database access Customer PII or PHI access Source code repository write access Cloud console (AWS/GCP/Azure) write access If your situation requires anything broader, we discuss it and document it in the engagement scope. Security on our side All client data lives in Notion workspaces with 2FA enforced All client communications go through Slack Connect or your platform of choice Email is on Google Workspace with 2FA and DMARC enforcement Local machine is encrypted, screen-locked, regularly updated No client data on USB drives, no client data in personal accounts References (placeholder for early launch) As of May 30, 2026, Attri Edge is in our launch phase. Client references will be added here as engagements complete the 90-day mark and clients give written permission. Until then, the diagnostic is the proof. Hemant will deliver the Evidence Index Blueprint within 48 hours of your call. The quality of that artifact is the trust signal. Insurance and liability Professional Indemnity / Errors & Omissions: in process, certificate available on request once active Cyber liability: in process Maximum liability per engagement: capped at fees paid in the 12 months prior (industry standard) Audit partners and referrals For licensed SOC 2 audit work (which Attri Edge does not provide), we partner with these US-licensed CPA firms: Boutique-friendly: Johanson Group LLP, KirkpatrickPrice, Sensiba Larger mid-market: Prescient Security, AssuranceLab We earn no referral fees from any of them. Press, talks, and external content When available, Hemant will list speaking engagements, podcast appearances, and external publications here. For inquiries about speaking or interviews: hs@attriedge.com . The diagnostic is the trust signal In 48 hours after your call, you'll have a blueprint that proves the depth of the work. That's the reference. Book your diagnostic