Record of Processing Activities 
Transfer Impact Assessment 
Privacy Impact Assessment 
Cybersecurity Controls 
Cybersecurity Risk Management 
Interactive Awareness Program 
Minimum Viable Secure Product (MVSP)
A minimal security checklist for B2B software vendors and outsourcing providers designed to ensure a baseline security posture.
What is MVSP?
A minimalistic cybersecurity checklist for modern B2B vendors.
Minimal security baseline
Minimum Viable Secure Product (MVSP) is a security checklist designed for B2B software vendors and outsourcing providers to ensure a minimum acceptable security posture.
Industry-backed initiative
MVSP is supported by leading technology organizations including Salesforce, Google, Okta, Slack, Secureframe, SafeBase, and Unicis.
What is its purpose?
Common use cases for the MVSP framework
Requests for proposals
The documentation for MVSP controls is concise and easy to understand. It provides a common cybersecurity benchmark for evaluating vendors and simplifies the responsibilities of sourcing teams.
Self-assessments
Startups and SMEs that cannot yet invest in costly compliance initiatives like ISO 27001, SOC 2, or PCI DSS can use MVSP as a starting point to ensure a secure foundation for their MVP.
Third-party security
Large enterprises assessing vendor security posture often use baseline checklists like MVSP to triage supplier risk and verify proper cybersecurity hygiene.
Industries
MVSP applies to any organization building or delivering enterprise software and digital services — including technology, healthcare, finance, government, education, retail, telecom, and legal sectors — particularly where sensitive or regulated data is processed or stored.
MVSP Resources
Unicis Solution
Unicis Platform Modules
Frameworks
Start leveraging MVSP with Unicis
Implement a minimal yet powerful security baseline for your product and vendors.