GoMarble Information Security Program

Last Updated: Jan 8, 2026

  1. Purpose

This Information Security Policy defines the controls and practices GoMarble uses to protect information assets and customer data. It supports the Information Security Program and establishes clear security expectations.

  1. Access Control

  • Access to systems and data is granted based on the principle of least privilege

  • User access is limited to what is necessary to perform assigned job responsibilities

  • Authentication mechanisms are used to prevent unauthorized access

  • Access is reviewed periodically and revoked when no longer required

3. Data Protection

  • Customer data is used only for authorized business purposes

  • Data access is restricted to authorized personnel

  • Reasonable measures are taken to prevent unauthorized disclosure, alteration, or loss of data

4. Encryption

  • Data in transit is protected using industry-standard encryption protocols

  • Sensitive data stored in production systems is encrypted where appropriate

  • Encryption keys and secrets are stored securely

5. Incident Response

  • GoMarble maintains an incident response process to identify, assess, and respond to security incidents

  • Security incidents are investigated promptly

  • Appropriate corrective actions are taken to mitigate impact and prevent recurrence

6. Vendor and Third-Party Security

  • Third-party service providers are selected based on security and reliability considerations

  • Vendors with access to customer data are expected to implement appropriate security controls

  • Access granted to third parties is limited and reviewed as needed

6. Vendor and Third-Party Security

  • Third-party service providers are selected based on security and reliability considerations

  • Vendors with access to customer data are expected to implement appropriate security controls

  • Access granted to third parties is limited and reviewed as needed

7. Employee Security Awareness

  • Employees and contractors are expected to follow security best practices

  • Security responsibilities are communicated during onboarding

  • Employees must report suspected security incidents or vulnerabilities promptly

8. Device Security

  • Company-managed devices used to access GoMarble systems enforce anti-malware protection

  • Firewalls are enabled on company-managed devices

  • Automatic screen lock with timeout is required on devices accessing sensitive systems

  • Devices must be kept up to date with security patches and updates

9. Policy Review

This Information Security Policy is reviewed periodically and updated as necessary to reflect changes in technology, business operations, or security risks.

The AI Agent for Paid Media Marketers

PRODUCTS

GoMarble AI

New

MCP Server

AI Ads Analyzer

AI Copywriter

COMPANY

About

Blog

SOCIALS

Youtube

LinkedIn

Instagram

Copyright © GoMarble AI 2026

AI Terms

Privacy Policy

Terms of Use