TradeCheck Incident and Breach Notification Policy
Provider: TradeCheck (NZ) Limited Contact: feedback@solisai.co Effective date: 20 February 2026 Last updated: 20 February 2026
This policy describes how TradeCheck identifies, manages, and communicates security incidents and privacy breaches.
1. Scope
This policy applies to incidents affecting TradeCheck systems, service availability, customer data, or personal information.
2. Definitions
- Security incident: Event that compromises or may compromise confidentiality, integrity, or availability of systems or data.
- Privacy breach: Unauthorized or accidental access, disclosure, alteration, loss, or destruction of personal information.
3. Incident lifecycle
TradeCheck follows an incident process with the following stages: 1. Detection and triage 2. Containment and mitigation 3. Investigation and impact assessment 4. Recovery and monitoring 5. Post-incident review and corrective actions
4. Notification approach
Where notification is required by law or contract, or where customer risk is material, TradeCheck will notify affected customers without undue delay after confirmation.
Notification may include:
- what happened,
- known impact and affected data scope,
- mitigation actions taken,
- recommended customer actions,
- follow-up contact details.
5. Regulatory notifications
For privacy breaches, TradeCheck will assess notification obligations under applicable law, including New Zealand Privacy Act 2020 requirements where relevant.
6. Communication channels
Incident communications may be provided through:
- account email contacts,
- direct support communication,
- in-app notices where appropriate.
7. Customer responsibilities
Customers should:
- promptly report suspected incidents involving their tenant/workspace,
- maintain secure account credential practices,
- provide accurate security contact details.
8. Contact
Report security concerns or suspected incidents to feedback@solisai.co.