Last Updated: 2025

Security Disclosures

Syqora Group takes the protection of client, partner, and operational data seriously. This page describes our security practices, the data we handle, and how to responsibly report potential vulnerabilities.

Overview

Syqora Group, LLC ("Syqora") takes the security of its systems and client data seriously. This page describes our security practices and provides a channel for responsible disclosure of potential vulnerabilities. We are committed to transparency with the clients, government partners, and suppliers who trust us with their information.

Data We Handle

As a logistics and procurement company, Syqora handles the following categories of data in the normal course of operations:

  • Shipment documentation and cargo manifests
  • Client business information and contact details
  • Government contract data and solicitation responses
  • Supplier and factory contact information
  • Financial and billing data

We do not process consumer payment card data (PCI) directly and do not store sensitive personal health information.

Our Security Practices

  • All client communications are available over encrypted channels (TLS 1.2+)
  • Internal systems use role-based access controls to limit data exposure to authorized personnel
  • Sensitive documents, including bills of lading and government submissions, are handled through secure document management protocols
  • We conduct periodic reviews of access controls and system configurations
  • Third-party vendors with access to client data are vetted for security practices before engagement

Responsible Disclosure

If you believe you have discovered a security vulnerability affecting Syqora Group's systems or website, we ask that you follow these guidelines:

  • 1. Report it to legal@syqora.com with the subject line "Security Disclosure"
  • 2. Provide sufficient detail to reproduce the issue, including affected URLs, request/response examples, or steps to trigger the behavior
  • 3. Allow us reasonable time to investigate and remediate before any public disclosure
  • 4. Refrain from accessing, modifying, or deleting data beyond what is necessary to demonstrate the vulnerability

Our Commitment

We will acknowledge receipt within 2 business days and work to resolve valid issues promptly. We do not currently offer a bug bounty program.

Incident Notification

In the event of a security incident affecting client data, Syqora will notify affected clients in accordance with applicable law and the terms of our service agreements. Notifications will be sent to the primary contact email on file. Where legally required, we will also notify relevant regulatory authorities within the prescribed timeframes.

Contact for Security Inquiries

Email

legal@syqora.com

Phone

+1 (949) 800-6561

Address

14712 Bentley Cir, Ste B
Tustin, CA 92780

Credentials

FMC #118446 | CAGE 16BS4