Security & compliance

Answers to every procurement question — before you ask

Tier I banks have procurement and legal checklists. This section is written for the people who fill them in. If anything here requires documentation, ask — we have it.

📋
NDA & engagement framework
Mutual NDA executed before any capability discussion — including before the sample research is shared. We adapt to your standard legal templates. Engagement agreements cover deliverable ownership, confidentiality, and IP rights.
🔐
Data handling & segregation
Client data is never shared across engagements. Analyst access is scoped to the specific engagement only. No client materials are stored on personal devices. All transfers are encrypted. Audit trails maintained on all client-facing systems.
🧑‍⚖️
Client confidentiality policy
We do not publish, reference, or disclose client names, methodologies, or research outputs — in any form — without written client consent. Testimonials on this site are published with explicit, documented approval.
Three-tier quality assurance
Every deliverable: (1) data source verification by the producing analyst, (2) independent calculation audit by a second analyst, (3) senior analyst sign-off before delivery. Documented. Consistent. Non-negotiable.
🌐
IT security & certifications
Role-based access controls, encrypted communication, and audit trails across all systems. ISO 27001 certification is in active preparation. A full Vendor Security Questionnaire (VSQ) is available on request for procurement teams.
📜
GDPR & data privacy
Data collected via this website is handled in compliance with GDPR (EU), India's Digital Personal Data Protection Act, and CCPA (California). A full Privacy Policy is linked in the footer. Contact details are never sold or shared.
📁
Due diligence pack
A complete due diligence document — covering firm registration, team credentials, regulatory status, data protocols, client references, and process documentation — is available under NDA within 48 hours of request.
NISM Series XV certified
Mutual NDA on all engagements
Encrypted data transfer
No cross-client data sharing
ISO 27001 in preparation
VSQ available on request
GDPR compliant
The JMN quality commitment
Every deliverable that leaves JMN has passed three checks. If an error reaches a client — a calculation discrepancy, a data inconsistency, or a formatting deviation from your house style — we will correct and redeliver within two hours at no charge, with a documented root-cause note. This is not a marketing statement. It is an accountable commitment we have maintained for twenty years.
Error reach you → corrected and redelivered within 2 hours, at no charge.