Bona Fides for US Organizations, v1.0
Assessment Steps (4)
Verification of Contact Info (VerifyContactInfo)
Verify the purported contact information and point of contact of the trustmark applicant. Acceptable means of verification include the following.
Was the purported contact information successfully verified? Document the means used to verify the information.
Means of Verification
Means of verification of the organization's contact information.
Denied Persons List Check (DPLCheck)
Are the organization, its parent organization, the organization's and parent organization's officers, and all individuals known by the Trustmark Provider to be an agent or representative of the organization or parent organization NOT on the U.S. Department of Commerce's Denied Persons List? Note that this step requires the Trustmark Provider to check the Denied Persons List for the point of contact purported by the Trustmark Applicant. The answer to this step must be "no" if any of the previously mentioned entities appear on the Denied Persons List.
Verification of Legitimacy of Non-Government Organization (VerifyLegitimateNGO)
Is the organization or its parent organization registered with the Secretary of State of the State specified in its business address of record? This assessment step is applicable only if the organization claims to be a U.S.-based non-government organization. Obtain a certificate of incorporation, or equivalent, that was issued by the appropriate Secretary of State.
Certificate of Incorporation
The certificate of incorporation, or equivalent, that was issued by the appropriate Secretary of State.
Verification of Legitimacy of Government Agency (VerifyLegitimateGovOrg)
Is the organization a U.S. federal, state, local, or tribal government agency that was created by an appropriate legislative, executive, or judicial authority? This assessment step is applicable only if the organization claims to be a U.S. federal, state, local, or tribal government agency. Document the authority that was used to create the organization.
Documentation of Authority
The legislative, executive, or judicial authority that was used to create the organization.
Conformance Criteria (4)
The organization MUST purport the organization's contact information and the name and contact information of an individual point of contact (the "contact") who is a person that is a representative of the organization. This information MUST be verifiable via an independent, publicly accessible source. The purported contact information MUST include an address of business operations, a mailing address, and a telephone number. The purported point of contact information MUST include the contact's first name, last name, business telephone number, and the capacity in which the contact represents the organization.
Denied Persons List
The organization, its parent organization, any of the organization's or parent organization's officers, and any well-known agent or representative of the organization or parent organization, MUST NOT be on the U.S. Department of Commerce's Denied Persons List.
Legitimate Non-Government Organization
If the organization claims to be a non-government U.S.-based organization, or a subsidiary of one, then either it or its parent organization MUST be registered with the Secretary of State of the State specified in one of the organization's addresses of record.
Legitimate Government Agency
If the organization claims to be a U.S. federal, state, local, or tribal government agency, then it MUST have been created by an appropriate legislative, executive, or judicial authority.
|Trustmark Reference Attribute||https://artifacts.trustmarkinitiative.org/lib/trustmark-definitions/bona-fides-for-us-organizations/1.0//trustmark-reference/|
|Keywords||US, USA, United States, Bona Fides,|
yes(VerifyContactInfo) and yes(DPLCheck) and (yes(VerifyLegitimateNGO) or yes(VerifyLegitimateGovOrg))
|Target Stakeholder||Any party interested in the vetting of an organization's legitimacy and reputation.|
|Target Recipient||Any organization that requires third-party vetting of its legitimacy and reputation.|
|Target Relying Party||Any party that requires third-party vetting of an organization's legitimacy and reputation as a prerequisite for trusting that agency.|
|Target Provider||Any organization that is trusted by existing Trustmark Relying Parties to vet the legitimacy and reputation of organizations.|
|Provider Eligibility Criteria||Any organization or business entity may act as a Trustmark Provider for trustmarks under this Trustmark Definition.|
|Assessor Qualifications||Any individual employed or contracted by the Trustmark Provider may act as the assessor for trustmarks under this Trustmark Definition.|
|Trustmark Revocation Criteria||For any trustmark issued under this Trustmark Definition, the Trustmark Provider must revoke the trustmark upon any condition whereby one or more Conformance Criteria cease to be satisfied.|
|Extension Description||This Trustmark Definition requires no extension data.|
|Legal Notice||This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.|