In this article:
Evidence-based score gain is a methodology in which we give positive scores to organizations that upload valid documents to the Evidence Locker. We do this to highlight the diligence and cyber-hygiene measures taken by organizations.
Note: There is no negative impact to a score if you don’t share any evidence.
We accept the following:
- SOC 2 Type 1 or 2
- ISO 27001
- PCI DSS Level 1
- NIST 800-53
- SIG
- HIPPA
- Privacy Policy
- Certificate of Insurance
- Pen Test
Different types of evidence carry different weights and the potential score increase is capped at 100.
What’s Next?
In the next few weeks, customers will start to see the evidence-based score gain in the events log as shown in the screenshot below.
FAQ:
- How do I upload to the Evidence Locker?
The process is explained here. Post evidence
- Will I have a negative score impact if I don't upload any evidence?
No. This feature rewards customers for uploading evidence as it reflects their good cyber hygiene.
- How long will it take for the score gain to show up?
It will take 1-3 days (platform date) for the positive score to be reflected in the overall score.