The group applies baseline security controls across the portfolio, including access governance, confidentiality expectations, and practical safeguards proportionate to risk. Where third-party service providers are used, portfolio companies are expected to require reasonable security and confidentiality commitments and to monitor material suppliers.
