Trust Center
At nudge, we prioritise the security of your intellectual property and sensitive data. Our integrated Information Security and AI Management System is designed to protect the confidentiality, integrity and availability of information across our platform and services.
We are certified to ISO/IEC 27001 for information security management and ISO/IEC 42001 for artificial intelligence management. These certifications confirm that our controls, governance processes and risk management practices are independently assessed and aligned to internationally recognised standards.
Our AI Management System ensures that AI systems are governed responsibly, with defined roles and responsibilities, documented risk assessments, human oversight, and ongoing monitoring and improvement.
We also maintain Cyber Essentials certification, reinforcing our protection against common cyber threats.
Our policies, procedures and technical safeguards are embedded into day to day operations and support compliance with applicable legislative, regulatory and contractual requirements.
Security and responsible AI are not standalone initiatives. They are built into how we design, develop and operate our services.
Accenture
ACCA
Expedia Group
AB InBev
BNP Paribas
Siemens
Visa
Samsung Electronics
Equifax
DLA Piper
ShutterstockDocuments
nudge Not Impacted by Shai Hulud npm Supply Chain Attack
Recently, security researchers disclosed a large-scale npm supply chain attack known as Shai Hulud. The wormable malware spread through compromised npm packages and GitHub workflows, stealing secrets and attempting to republish malicious code.
More information can be found here:
Arctic Wolf
| Unit42
| Wiz
| Aikido
We want our customers to know this attack does not impact nudge.
Our review confirmed that we do not use the affected packages within our product or pipelines. All developer accounts, repositories, and secrets remain secure.
We will continue to monitor the situation closely, but the confidentiality, integrity, and availability of nudge systems are unaffected.
nudge Not Impacted by MOVEit Vulnerabilities
Recently, the security team here at nudge became aware of the news surrounding a high-impact MOVEit vulnerability. Reputable threat intelligence sources have reported that this incident impacts customers of this solution: https://www.securityweek.com/moveit-customers-urged-to-patch-third-critical-vulnerability/.
We want our customers to know that nudge is not impacted by this vulnerability.
We do not leverage this technology/software within our product and therefore the confidentiality, integrity, and availability of our systems remain unharmed.