security
The questionnaire, answered with current controls.
Temja separates deployed controls from production gates and integration pilots.
Trusted evidence writes
Clients send raw answers and command ids. The server derives scores, timestamps, certificates, hashes, and audit entries.
Identity status
Verified email/password is available. Tenant-admin MFA, SSO, and SCIM remain explicit production or Enterprise acceptance gates.
Audit-chain boundary
The chain is append-only and HMAC-signed. It is not independently anchored against an operator holding the signing key.
Participation, not certification
Temja records training measures and demonstrated outcomes. It is not legal advice or an accredited certification body.