Security Statement
 
A risk-based approach to protecting information—focused on confidentiality, integrity, and availability.
This Security Statement describes the safeguards used by Beacon Regulatory Services (BRS) LLC (“BRS LLC,” “we,” “us,” “our”) to protect information processed through this website and our business operations. This page complements the Privacy Policy, Cookie Policy, and Terms of Use.
Effective date: December 17, 2025  • We may update this page as systems, vendors, and threat profiles evolve.
 
 
On this page
 
 
  • Overview
    BRS LLC takes a pragmatic, risk-based approach to security. We aim to:
    • Protect confidentiality of information shared with us.
    • Maintain integrity of business records and deliverables.
    • Support availability of systems needed to deliver services.
    While we implement safeguards designed to reduce risk, no website, system, or transmission method can be guaranteed 100% secure.
  • Safeguards we use
    Our safeguards are designed to be proportionate to our operating model and include a combination of administrative, technical, and physical controls, such as:
    • Access control: role-based access where feasible, least-privilege principles, and periodic access review.
    • Authentication: strong passwords and multi-factor authentication (where supported by the platform).
    • Encryption: encryption in transit (e.g., HTTPS/TLS) and encryption at rest (where supported by hosting/service providers).
    • Device hygiene: security updates/patching and endpoint protection practices aligned to risk.
    • Operational monitoring: log and alerting capabilities where available through our service providers.
    • Backups & recovery: business continuity practices appropriate to the services in scope.
    • Data minimization: collecting and retaining only what is reasonably necessary for service delivery and business operations.
    Important boundary
    This statement describes our general control posture. If you require specific security commitments (e.g., contractual controls, documented procedures, or evidence artifacts), those should be addressed in the executed service agreement(s).
  • Vendors, hosting, and third-party services
    We may rely on reputable third-party platforms (e.g., website hosting, email, forms, analytics, and payment/onboarding tooling) to operate efficiently. These providers may process data on our behalf under their own security programs and terms. For details on third-party data handling and cookies, refer to the Privacy Policy and Cookie Policy.
  • Incident response and communications
    If we become aware of a confirmed security incident that materially impacts personal data or client information under our control, we will take reasonable steps to investigate, contain, and remediate. Where applicable, we will provide notifications consistent with contractual obligations and applicable law.
    If you believe you have identified a security issue on this site, please contact us promptly using the details in the “Contact” section.
  • Your responsibilities
    Security is shared accountability. To reduce avoidable risk, we recommend you:
    • Use strong, unique passwords and enable MFA where available.
    • Do not send highly sensitive information via unencrypted email.
    • Verify payment and onboarding links before entering credentials.
    • Contact us if you suspect unauthorized activity associated with your engagement.
  • Contact for security inquiries
    For security-related questions or to report a potential issue, contact:
    Beacon Regulatory Services (BRS) LLC
    9105 E 56th St, Ste J #2057, Indianapolis, IN 46216, United States
    Phone: +1 (317) 662-0910
    Email: This email address is being protected from spambots. You need JavaScript enabled to view it.  or  use the contact form
    For consolidated governance navigation, see Legal & Privacy.