Skip to content
English
Contact us Customer portal Sign in
Visit trustero.com
  • There are no suggestions because the search field is empty.

Trust Portal Overview

Functionality overview for the Trust Portal

Overview

The Trustero Trust Portal gives organizations a secure, centralized way to share compliance artifacts, like attestations and certifications, with third parties. This streamlines external reviews and reduces the tedious work of handling NDAs and ad hoc file distribution.

Note: The Trustero Trust Portal is a separate feature that must be enabled in your account. Contact your Trustero sales representative for details on enabling this feature.
 

How It Works

Document Permissions

Documents shared in the portal have one of the following permission levels:

  1. Public: can be downloaded by anyone who visits the site
  2. Confidential: can be downloaded only after accepting the non-disclosure agreement. This is self-service and requires no additional approval
  3. Restricted: can be downloaded after accepting the confidentiality agreement and after the publisher approves the access request

Users

Each Trust Portal has three types of users:

  1. Visitors (external): the third-parties who are looking for compliance information about the publisher, see the trust portal from a public page. There they can (optional features must be enabled by the publisher):
    • See information about the publisher's compliance status
    • See documents shared by publisher
    • Request access to confidential and restricted documents
    • Request access to Trustero Intelligence to ask questions (optional)
    • Download public documents
    • Download confidential documents (after signing NDA)
    • See Control Descriptions shared by the publisher (optional)
    • See FAQs shared by the publisher (optional)
    • See Security Updates shared by the publisher (optional)
    • Register for email notifications of Updates (optional)
    • Search for content on the portal
    • Ask Trustero Intelligence questions about content (optional)
  2. The Publisher (internal): the organization that is sharing compliance information with third parties, has a portion within the Trustero app where they manage their trust portal. There, users with "Admin" or "Trust Portal Publisher" roles can:
    • Manage branding elements (company summary, logo, background image)
    • Manage non-disclosure agreement template
    • Select compliance framework logos to display (including custom framework logos)
    • Determine which documents to publish and how to group them
    • Determine permission levels of the documents (Public, Confidential or Restricted)
    • Manage Control Descriptions to display on the portal (optional)
    • Manage Security Updates to display on the portal (optional)
    • Manage FAQs to display on the portal (optional)
    • Customize Trustero Intelligence interface on the portal (optional)
    • Preview changes to be published
    • Publish individual category changes or publish all changes
  3. The Approver (internal): the person or persons who approve visitor requests for access to restricted documents and Trustero Intelligence. There, users with "Admin" or "Trust Portal Approver" roles can:
    • Approve/deny requests to access documents
    • Approve/deny requests to access Trustero Intelligence
    • Approve/deny requests for more TI question tokens
    • Manage list of blocked domains (e.g. public email sites)
    • Manage automatic access expiration (e.g. auto-revoke access grant after 30 days)
    • Manage list of emails to receive access request notifications
    • View visitor analytics for: access requests, granted requests, documents downloaded, FAQs clicked, searches, TI chats, TI questions asked, subscribers to security updates, unsubscribed to security updates