everything procurement asks for — published once, here. SLA, COI, MSA, security posture, partner registrations, and the people who answer the phone.
| severity | definition | initial response | resolution target | service credit per breach |
|---|---|---|---|---|
| P0 — critical | production outage; ransomware in progress; full business down | 15 min | 4 hours | 5% monthly fee per hour beyond target |
| P1 — high | single user blocked; active security incident; email down | 1 hour | 8 hours | 2% monthly fee per breach |
| P2 — medium | degraded service; non-blocking issue; performance impaired | 4 hours | 1 business day | no credit |
| P3 — low | service request; scheduled change; how-to question | 1 business day | agreed window | no credit |
// effective for: FORTRESS, SENTINEL, VANGUARD, NEXUS PROTECT tiers. GUARDIAN MICRO is best-effort same-day.
need a signed PDF? request full SLA PDF (signed) → information@pcatechnologyinc.com
Four documents your AP and legal team will ask for. Email to request — same business day response.
Current W-9 for PCA Technology Inc. EIN on file. Sent as signed PDF.
general liability $2M — cyber liability $1M. can be addressed to your company as certificate holder.
Redline-ready MSA template: scope, IP, indemnification, limitation of liability, data handling.
Completed CAIQ-lite. Answers security controls honestly — what we have and what we don't.
| control | status | note |
|---|---|---|
| SOC 2 Type II | PLANNED Q3 2027 | scoping in progress; auditor selection 2026 |
| HIPAA BAA | AVAILABLE | per-customer review; healthcare clients sign BAA at engagement |
| ISO 27001 | NOT PURSUED | not target market; no plans to certify |
| NIST CSF alignment | YES | informal mapping; full system security plan (SSP) available on request |
| Cyber insurance | YES | $1M cyber liability |
| General liability | YES | $2M GL |
| PCI DSS | N/A | PCA does not handle cardholder data |
| Background checks | YES | all named techs background-checked before client access |
// honest note: PCA's posture is sufficient for under-100-seat houston businesses. if your auditor requires SOC 2 today, call Atrium IT or Worksighted — they have it. we'll get there in 2027.
Each partnership is verifiable via the partner's directory. Links go direct.
Microsoft Solution Provider partner program.
cloud marketplace partner. M365, SentinelOne, Proofpoint, and 100+ vendor licensing via Pax8.
managed service provider status. requires contract, minimum seat commitments, and training completion. EDR deployed across all SENTINEL+ tiers.
email security partner. Proofpoint Essentials deployed for email threat protection across managed tiers.
UniFi professional integrator. network design, deployment, and ongoing management for UniFi LAN/Wi-Fi/SD-WAN environments.
The single-point-of-failure objection, answered directly.
// no customer is single-threaded on daniel. documented in our SLA. when he's unavailable, coverage hands off to a documented runbook and a named human.
(713) 239-2070 — same number, 24/7 for active customers in houston metro. (for active customers only — prospects must book via /book-a-call)
we handled the qilin variant in 2025. we can help. read the ransomware survival playbook →
15 minutes with daniel. he'll tell you if PCA fits — and if not, who to call instead.