Managed Cyber Governance for Regulated Service Firms
Client Login

Security & Privacy

You Share Sensitive Material With Us. Here Is How We Protect It.

Last updated: March 14, 2026

Before you share questionnaires, evidence, or scoping details, this page explains what Borealis collects, how we handle it, and what happens when a link takes you into Aurora Command.

Start here for the plain-English version, then use the formal legal notices for the governing terms.

Book a 30-Minute Program Review Read the Privacy Policy
AT A GLANCE
  • Scoping materials stay within Borealis review and delivery systems
  • Analytics stay off until you grant consent
  • If your browser sends a supported privacy signal, optional analytics and marketing stay off
  • Aurora links open in a new tab so the handoff is obvious and easy to exit
  • Procurement questions get a direct, specific answer

Your Materials Stay Scoped to the Review

Questionnaires, screenshots, and draft evidence shared during a program review stay within Borealis review and delivery systems. We do not share them outside that context without permission or a governing agreement.

Analytics Are Consent-Gated

Marketing tags and site analytics remain off until you allow them. Supported Global Privacy Control signals also keep optional analytics and marketing off. The site works fully without that consent. Contact and scheduling forms collect only the information needed to respond. Public opt-out details are on the Privacy Choices page.

Aurora Handoffs Are Deliberate

Client Login opens in a new tab so the shift from this site to Aurora Command is visible, intentional, and easy to reverse. Program-review links stay on Borealis. No silent redirects.

What This Site Collects

  • Name, work email, company, optional phone, and notes you submit through scheduling
  • Contact-form details needed to respond to your message
  • Basic analytics only when your cookie settings allow it

How We Use It

  • To schedule a program review or respond to a specific question
  • To send calendar invites, follow-up notes, and scoping information
  • To understand which pages are useful, if analytics consent is granted

What This Page Does Not Do

  • Replace the formal Privacy Policy or any service agreement
  • Provide legal, tax, or accounting advice
  • Guarantee compliance outcomes from Aurora Command alone

Our Commitments

  • We never share your scoping materials, screenshots, or draft evidence outside the Borealis delivery context without permission.
  • We collect only the minimum information required to schedule, scope, and respond.
  • Cookie-gated analytics remain off until consent is granted, and supported browser privacy signals keep optional analytics and marketing off. The site works fully without it.
  • When a conversation moves into Aurora Command, the purpose is controlled evidence sharing, not a generic portal redirect.

Aurora Command

What the Aurora handoff is actually for

Aurora Command is where the maintained evidence set lives. Borealis links into that system when a client needs a guided walkthrough, controlled reviewer access, or a structured proof conversation.

Aurora Command framework requirements view showing control-to-framework mapping with status, evidence counts, and ownership columns. Governance + reuse

Governance Mapping

Map one control set to every reviewer context

Aurora Command keeps control coverage, evidence counts, and framework mapping in one working view instead of across spreadsheets.

  • Control-level mapping stays tied to evidence.
  • Framework overlap does not create duplicate work.
  • Stale items are visible before a reviewer notices.
Aurora Command evidence dashboard showing artifact health summary with active, expiring, and expired status indicators. Monthly cadence

Freshness + Timing

Keep evidence current between review cycles

Aurora Command surfaces freshness timing, approval history, and review status so Borealis can run a calm monthly cadence instead of a last-minute scramble.

  • Good evidence has an owner, a date, and a refresh cadence.
  • Review cycles stop depending on memory and inbox searches.
  • Borealis uses this to keep the program organized for review year-round.
Aurora Command Trust Centers dashboard showing published trust portals with public access controls and request workflow settings. Controlled sharing

Trust Center Access

Share proof through a controlled handoff

Aurora Command uses controlled access workflows instead of loose attachments, so buyers and reviewers get the right evidence without losing track of what was shared.

  • Cross-domain handoffs feel deliberate instead of abrupt.
  • Useful when procurement or diligence reviewers need selective access.
  • Supports a controlled proof handoff without email chaos.
Aurora Command framework library showing 68 frameworks with searchable categories, requirement counts, and mapped control totals. Reusable proof

Framework Library

Add frameworks without rebuilding your evidence set

Aurora Command treats frameworks as reusable structures around one maintained control library, so the same program can answer different reviewer contexts.

  • Useful when firms face overlapping regulator, buyer, and partner reviews.
  • Supports a single operating cadence across multiple proof obligations.
  • Makes state and industry requirements easier to explain.
Talk Through Aurora Command Book a 30-Minute Program Review

Screenshots shown from the live public Aurora experience.

Have a Specific Procurement or Privacy Question?

Tell us exactly what the reviewer needs. We will respond with a direct answer, not a document library.

Book a 30-Minute Program Review Email Borealis