MarginSales Trust Centre
Enterprise documentation for procurement teams, vendor reviews, and compliance evaluations. This section is intentionally not listed in the main navigation β it exists specifically for due-diligence purposes.
Our Commitments
How we approach security and privacy
MarginSales is a B2B sales services firm. We process business contact data on behalf of clients and collect limited personal data through our website. We do not hold payment card data directly, do not operate regulated financial infrastructure, and are not currently certified under ISO 27001 or SOC 2. We are, however, aligned with industry-standard security and privacy practices and committed to the principles that underpin those frameworks.
We collect only what we need, retain data for defined periods, and support data subject rights including access, correction, and deletion requests.
Role-based access controls, multi-factor authentication, encrypted communications, and regular internal security reviews aligned with industry-standard practices.
AI tools are used to assist β not replace β human judgment. Client data is not used to train external models. All AI-generated outputs undergo human review before use.
Policies & Documentation
All Trust Centre documents
How we collect, process, retain, and protect personal data β including DPDPA and GDPR-aligned disclosures.
Website use, service scope, acceptable conduct, intellectual property, liability, and governing law.
Access control, MFA, encryption, incident response, vendor management, and our security architecture.
Cookie categories, analytics tools, consent controls, and browser opt-out instructions.
Billing cycles, cancellation procedures, refund eligibility, and dispute resolution for service engagements.
Controller and processor obligations, sub-processor list, deletion requirements, and cross-border transfer terms.
Anti-bribery, anti-corruption, professional conduct, conflict of interest, and responsible AI commitments.
Our principles for AI-assisted workflows, data restrictions, human review requirements, and output governance.
Have a specific compliance question?
For vendor due diligence, security questionnaires, DPA requests, or any compliance enquiry, contact our team directly. We respond to enterprise compliance requests within 3 business days.
For security vulnerability reports, please use the same address with βSecurity:β in the subject line.