Answer bank and evidence map for TikTok Shop Partner and TikTok Ads review submissions.
Last updated: 2026-02-12 | Contact: admin@nvprodvcts.com
Canonical website URL: https://www.statemintapp.com
Privacy URL: https://www.statemintapp.com/legal/privacy
Terms URL: https://www.statemintapp.com/legal/terms
Past 3 years breach disclosure
No reportable breaches requiring notification to regulators or customers in the past 3 years.
Past 3 years complaint disclosure
No complaints, objections, or formal notices from data protection authorities or customers relating to personal data processing in the past 3 years.
Countries where data is stored/processed
United States.
DPO contact
Data Protection Officer contact email: admin@nvprodvcts.com
Certification disclosure
No ISO27001, ISO27701, SOC2 Type II, ePrivacy, or equivalent certifications at this time.
| Question | Answer | Evidence | Upload / Notes |
|---|---|---|---|
Does your organization have a published information security policy or program? | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program | |
Does your organization enforce network segregation and implement protection measures to monitor and prevent network threats? | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program | |
Does your organization install anti-virus software on company endpoints? | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program | |
Does your organization implement a security baseline for daily operations? Such as screen locking, password complexity, a clear-desk policy, multi-factor authentication, etc. | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program | |
Does your organization have a published access control policy and restrict personal data access to systems based on the principle of least privilege? | Yes | Access Control and Data Rights Evidence Packet Export this page as PDF for least-privilege and deletion commitment prompts. /legal/evidence/access-control | |
Does your organization have a published data classification policy and encrypt sensitive data both in-transit and at-rest? | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program | |
Does your organization have a published incident response policy with clarified roles and responsibilities, as well as incident reporting/communication channels? | Yes | Incident Response Evidence Packet Export this page as PDF for incident response policy and breach notification prompts. /legal/evidence/incident-response | |
Does your organization have a vulnerability or threat management procedure in place? | Yes | Security Program Evidence Packet Export this page as PDF or upload a full-page screenshot. Reuse for security upload prompts. /legal/evidence/security-program |
| Question | Answer | Evidence | Upload / Notes |
|---|---|---|---|
In the past 3 years, have you experienced any breach of security leading to the accidental or unlawful exposure of personal data which you notified (or were legally required to notify) to: (i) a governmental or regulatory authority; or (ii) a former or existing customer. If yes, please provide details. | No | Use copy snippet: Past 3 years breach disclosure. | |
In the past 3 years, have you received a complaint, objection, or similar notice or correspondence from any data protection or other regulatory authority, or any former or existing customer or individual, relating to your processing of personal data? If yes, please provide details. | No | Use copy snippet: Past 3 years complaint disclosure. | |
In which country(ies) will the data be physically stored or processed? | United States | ||
Does your organization have an internal personal data protection policy and is it regularly updated? | Yes | Privacy and Compliance Evidence Packet Export this page as PDF for privacy and compliance prompts. /legal/evidence/privacy-compliance | |
Will you assist sellers or TikTok Shop to delete/update/provide data upon users' requests? | Yes | No upload field is required, but retain a screenshot of /legal/data-rights as backup. | |
Does your organization maintain a regularly updated privacy policy? | Yes | Published Privacy Policy Link Provide this URL in link fields and keep it publicly accessible. /legal/privacy | |
Does your organization have an appointed Data Protection Officer (DPO)? If yes, please provide the DPO's contact email. | Yes | DPO email: admin@nvprodvcts.com | |
Does your organization have a notification process to alert us or sellers of suspected/identified data breaches? | Yes | ||
At the end of the contractual relationship, will you delete all collected customer data in your possession? | Yes | ||
Have you obtained any ISO27001/ISO27701/SOC2 Type2/ePrivacy or other industry-acknowledged information security or privacy-related certifications? (Optional) | No | No certifications at this time. |
No reportable personal data breach notifications in the last 3 years.
No complaints or formal notices from regulators or individuals in the last 3 years related to personal data processing.
United States.
No ISO27001, ISO27701, SOC2 Type II, or equivalent certification at this time.