2026 Biddle Consulting Group W-9 Form
TestGenius is part of Biddle Consulting Group. This privacy policy will explain how our organization uses the personal data we collect from you when you use our website.
Online TestGenius User Agreement and Terms of Use.
A technical flow chart depicting the process and data flow during a TestGenius test administration.
To request a copy of the TestGenius sitemap, submit this non-disclosure agreement (NDA) with your request to support@biddle.com. After we have confirmed your eligibility to recieve the sitemap, it will be sent to you.
Client offboarding procedures for all subscription types.
2026 Accessibility Conformance Report - International Edition (Based on WCAG 2.2)
Report on Google LLC’s Description of its Apigee Edge API Management Platform and on the Suitability of the Design and Operating Effectiveness of its controls relevant to security, availability, and confidentiality throughout the period April 1, 2022 to March 31, 2023.
A Bitsight Technologies Executive Report is a document designed to present a high-level overview of an organization's cybersecurity posture to non-technical stakeholders like executives and board members.
The CSA STAR CAIQ is a Consensus Assessments Initiative Questionnaire
(Spring 2023)
The CSA’s Security, Trust and Assurance Registry Program (CSA STAR) is designed to help customers assess and select a cloud service provider through a three-step program of self-assessment, third-party audit, and continuous monitoring.
(Spring 2024)
A CSA STAR Certificate is a security certification from the Cloud Security Alliance (CSA) that validates a cloud service provider's security posture.
This whitepaper provides information to our customers about the CCPA and how Google Cloud leverages Google’s industry-leading data privacy and security capabilities to store, process, maintain, and secure customer data.
Higher Education Community Vendor Assessment Toolkit (HECVAT) Lite 3.05 for OPAC/TestGenius
Completed NIST survey report for Biddle Consulting Group / TestGenius for local compliance.
Bridge letters are attestations made by management of the service provider, in this case, Google Cloud, and are intended to “bridge” the gap from the end date of the SOC (Service Organization Controls Report) report to the customer’s period end date. Bridge letters summarize material changes or issues identified within the internal control environment beyond the period end date of the most recent SOC report.
A SOC 1 (Service Organization Controls Report) report documents a cloud service provider’s internal controls that may be relevant to a customer’s financial reporting. This report is particularly useful for organizations that audit financial statements.
Bridge letters are attestations made by management of the service provider, in this case, Google Cloud, and are intended to “bridge” the gap from the end date of the SOC report to the customer’s period end date. Bridge letters summarize material changes or issues identified within the internal control environment beyond the period end date of the most recent SOC report.
System and Organization Controls (SOC) 2 Audit Report for Google Cloud Platform (GCP). Developed based on the Auditing Standards Board of the American Institute of Certified Public Accountants’ (AICPA).
The SOC 3 report has been developed based on the Auditing Standards Board of the American Institute of Certified Public Accountants’ (AICPA) Trust Service Criteria (TSC). The SOC 3 is a public report of internal controls over security, availability, processing integrity, and confidentiality.
NIST CSF - Written Information Security Program (WISP) (05.01.2023) - Table of Contents Only.
ISO/IEC 27001 provides the requirements for an information security management system (ISMS), specifies a set of best practices, and details the security controls that can help manage information risks.
ISO/IEC 27017:2015 provides guidelines for information security controls applicable to the provision and use of cloud services.
ISO/IEC 27018 focuses on privacy and security controls for public-cloud service providers that process personally identifiable information (PII).
ISO/IEC 27701 is the first global privacy standard that focuses on the collection and processing of personally identifiable information (PII). This standard was developed to help organizations comply with international privacy frameworks and laws.
Information technology -- Security techniques Enhancement to [ISO/IEC](http://ISO/IEC) 27001 for privacy management
Signup or login to get started!
