A contract satisfies our infosec program and cyber insurance requirements, confirmed by a corporate legal team. Our role is to manage risk, not eliminate it.
(already minimizing sensitive data storage and transit whenever possible, as an entity operating in a regulated industry)