General
- Are data recovery processes in place?
- Do you have a written incident response plan in place?
- Do you maintain written disaster recovery procedures / a Disaster Recovery Plan (CRP)?
- Have you experienced a cybersecurity event in the past two years?
- Will you share the results of a cybersecurity audit if you conduct any?
- Will you agree to provide all reasonable assistance with any investigation into a cybersecurity incident affecting our data?