Certifications and Standards
Minority, Woman-Owned Small Business
Fast 100 USPAACC (US Pan Asian American Chamber of Commerce) Businesses
Capital Novus accounting and billing systems are DCAA Compliant.
International Standards Organization (ISO) Certification
Capital Novus is a ISO certified company and conforms to highest international standards for quality planning, quality assurance and quality control.
ISO 9001:2008 is now established as the most widely accepted standard for providing assurance about the quality of services a provides to its customers. As a Certified ISO 9001:2008 company, Capital Novus brings expertise to meet our quality management needs and customer requirements more efficiently and effectively, ensuring increased customer satisfaction.
ISO 27001:2013 is the highest information security certification and compliance to this standard, ensuring ‘Confidentiality’, ‘Integrity’ and ‘Availability’ of data. Capital Novus conforms to ISO requirements for an information security management system (ISMS) designed to ensure the selection of adequate and proportionate system architecture and security controls to protect valuable information assets and give confidence to customers worldwide.
EU-U.S. Privacy Shield & U.S. –Swiss Safe Harbor Self-Certified
Some of the key data & information security practices followed at Capital Novus include:
- Ensure compliance with laws and regulations.
- Process framework for the implementation and management of controls to ensure that the specific security objectives of an organization are met.
- In-house Servers are protected using access control devices and monitored using CCTV.
- No removable media is provided on operator workstations.
- Every operator and Server activity is logged and monitored.
- Network is immune to any unauthorized access/hacking through active Firewall.
- Servers are equipped with dual high-speed CPUs and RAID.
- Authenticated Server Access for Privileged Users only.
- Strong Password Policy & Password Aging.
- Inactive Session Terminations.
- Data Partitioning with appropriate access rights.
- User Activity Auditing.
- No hand baggage, no printed material, no internet access or data storage media is permitted in production area.
- Workstations do not have slots to access data through removable media.
- Employees are trained on privacy and data security norms of the organization.
- All employees sign a confidentiality agreement before joining the company.
Capital Novus federal Contracting Vehicles
Schedule 70 Contract #: GS35F0674V: Valid Through August 31, 2019
Group 36 Contract #: GS-03F-043AA: Valid Through February 28, 2018
ID/IQ NITAAC CIO-SP3
CIO-SP3 Small Business Services/Solutions Contract Valid Through 2022