Trust Center

Legal & Compliance

Our Commitment to Responsible Business

Integrity, transparency, and accountability — across every aspect of how we operate.

Policies

Other Legal & Compliance

Questions about these policies? Contact compliance@evotek.com or write to us at:

EVOTEK, Inc.
462 Stevens Avenue, Suite 308
Solana Beach, California 92075

Strengthening Trust Through Proven Governance

Security

Security is foundational to everything we do. We protect our clients, systems, and data through a multilayered security program built on proven controls, continuous monitoring, and industry‑recognized best practices.

We apply multiple layers of safeguards across networks, systems, identities, and data to ensure resilience even if one control is bypassed.

All EVOTEK team members understand their role in protecting the company’s systems, data, and clients. Security is not just a technical function—it is a shared responsibility that requires continuous vigilance, informed decision‑making, and a culture that prioritizes risk awareness at every level.

We enforce least‑privilege access, multi‑factor authentication, and rigorous authorization standards to ensure only the right people can access the right resources.

We maintain always‑on monitoring, real‑time threat detection, and ongoing control reviews to strengthen our security posture as threats evolve.

Our SOC 2 Type 2 attestation provides independently validated assurance that our controls operate effectively over time, protecting client data against unauthorized access and ensuring confidentiality, integrity, and availability.

We proactively assess and mitigate financial risks to ensure ongoing stability and long‑term resilience. Our disciplined oversight protects the financial health of our business and the trust of our clients.

We protect data at rest and in transit with modern encryption and strict access policies, safeguarding confidentiality and integrity across all environments.

Artificial Intelligence

We use AI responsibly, guided by principles of transparency, accountability, fairness, and security to ensure technology enhances — not compromises — trust.

Clear communication of AI purpose, data use, and decision processes.

Governance, oversight, and responsibility for AI outcomes.

Privacy‑by‑design and rigorous safeguards for data integrity.

Bias‑aware, responsible AI that supports equitable outcomes.

Financial Integrity

Financial integrity is fundamental to how we operate and serve our clients. We uphold rigorous standards that ensure our financial practices remain transparent, ethical, and aligned with the highest levels of governance.

We deliver clear, precise, and transparent financial reporting so stakeholders have full confidence in how we manage and communicate financial information.

We take responsibility for every financial decision. Our approach reflects disciplined governance, ethical leadership, and sound judgment across all financial operations.

We adhere to all applicable financial regulations, audit requirements, and industry standards. Strong internal controls safeguard assets, prevent misuse, and support operational integrity.

We conduct every financial activity with honesty, fairness, and respect. Ethical behavior guides how we manage resources, evaluate investments, and collaborate with partners.

We undergo annual financial audits conducted by an independent, certified public accounting firm to ensure accuracy, transparency, and compliance.

Privacy Principles

We embed privacy‑by‑design across all processes and systems, ensuring responsible data handling, regulatory compliance, and robust protection for personal and sensitive information.

We clearly explain what data we collect, why we collect it, and how it is used — empowering people and organizations to understand and control their information.

We collect and use personal information only for legitimate, clearly communicated purposes aligned with user expectations.

We limit data collection to what is necessary to deliver secure, effective services — reducing exposure and privacy risk.

We protect personal data with strong technical and organizational measures, including encryption, access controls, and continuous monitoring.

Individuals have the ability to review, correct, and challenge the accuracy of their personal information.

We take responsibility for upholding our privacy commitments through governance, internal controls, and compliance with global privacy regulations such as GDPR and ISO/IEC 27018.

Third‑party subprocessors are held to the same privacy commitments we make to our customers, with clear oversight and disclosure practices.

Code of Conduct & Ethics

We uphold integrity, respect, and ethical conduct in every interaction.

We conduct ourselves truthfully, ethically, and consistently—ensuring our actions reflect who we are and the standards we uphold.

We treat colleagues, partners, and clients with dignity, professionalism, and fairness, fostering a culture where every individual feels valued.

We take ownership of our decisions, behaviors, and outcomes. We honor commitments, meet obligations, and act in the best interest of our clients and organization.

We make decisions guided by strong moral principles, evaluating risks and impacts while choosing actions that reflect our values and long‑term responsibilities.

We adhere to all applicable laws, regulations, and internal policies, ensuring that our operations meet the highest standards of legal and ethical compliance.

We disclose and avoid situations in which personal interests could interfere with professional duties, maintaining objective and sound judgment.

We promote a safe, inclusive, and harassment‑free environment that encourages collaboration, innovation, and respect.

We encourage employees to raise concerns, report misconduct, and seek guidance without fear of retaliation, supporting a culture of openness and trust.