This guide sets out the rules for the use of the Guardian SecureApp™ certification mark and certificate by certified clients. It explains what you may do, what you must not do, and what you must include alongside the mark whenever you use it. These rules are binding on all certified clients and are derived from the Guardian SecureApp™ Scheme Rules (Annex A to GSA-PR-01), specifically Section A.13.
The certification mark is a protected asset of Guardian Assessment Private Limited. Correct and consistent use of the mark by certified clients helps maintain the credibility and trustworthiness of Guardian SecureApp™ certification for all stakeholders. Misuse of the mark undermines the integrity of the Scheme and may result in suspension or withdrawal of your certification.
⚠ This guide applies only to currently certified clients
- You may only use the Guardian SecureApp™ certification mark while your certification is Active.
- All use of the mark must stop immediately if your certification is Suspended, Withdrawn, Reduced in scope, or has Expired.
- Check your current certification status at any time in the Guardian SecureApp™ Public Certified Products Directory.
The Guardian SecureApp™ certification mark is a protected certification mark owned by Guardian Assessment Private Limited. It is used to indicate that a digital product has been independently evaluated and certified under the Guardian SecureApp™ Product Certification Scheme in accordance with ISO/IEC 17065.
The design, colours, proportions and permitted variants of the mark are controlled through Guardian's mark artwork files and usage guidelines. The authoritative mark artwork files (GSA-F-42, GSA-F-44) are provided to certified clients upon request after certification is granted.
Licence Conditions
Guardian grants certified clients a limited, non-transferable licence to use the mark in connection with the certified product only, subject to:
- Valid certification status (Active) at all times;
- Full compliance with these mark usage rules and the certification agreement;
- Compliance with the Guardian SecureApp™ Scheme Rules (Annex A to GSA-PR-01).
This licence is personal to the certified client and cannot be transferred, assigned or sub-licensed to any third party.
✓ Permitted Uses
- Use the mark on marketing materials that specifically and clearly refer to the certified product.
- Display the mark on the certified product's website or product pages where the certified scope is clearly indicated.
- Use the mark in proposals, tenders and procurement responses where it is clear which product is certified and under which module(s) and assurance level.
- Include the mark in press releases, blog posts or communications specifically about the certified product's certification.
- Display the mark in product documentation, datasheets and technical materials relating to the certified product.
- Use the mark digitally (website, email signatures, digital assets) or in print (brochures, product packaging).
✗ Prohibited Uses
- Use the mark for products or services that are not covered by the certification scope.
- Suggest that the entire organisation or all products are certified (certification is product-specific).
- Imply that certification guarantees the absence of vulnerabilities, security incidents or breaches.
- Use the mark after certification has been suspended, withdrawn or has expired.
- Use the mark on legal contracts or financial instruments as a warranty or guarantee of security.
- Claim certification is equivalent to compliance with any law or regulation not explicitly covered by the Scheme scope.
- Allow third parties to use the mark without Guardian's prior written consent.
- Modify, distort, recolour or alter the mark artwork in any way.
Whenever you display the Guardian SecureApp™ certification mark, you must ensure the following information is clearly visible nearby — either directly alongside the mark or in the immediately adjacent text:
The phrase "Guardian SecureApp™ Certified" — to make clear what the mark represents.
The module(s) for which certification was granted — e.g. "Module A – Web Application Security" or "Modules A + C".
The assurance level granted — e.g. "Level 2 – Enhanced Assurance".
A reference to the certificate number OR a link to the Guardian SecureApp™ Public Certified Products Directory.
On digital media where space is limited, a minimum acceptable format is to display the mark with a hyperlink to the product's directory entry, and include the module and level in a tooltip or adjacent caption.
✓ Official Statement of Conformity (from your certificate)
"The product identified in this certificate has been evaluated and found to conform to the Guardian SecureApp™ Product Certification Scheme Rules (Annex A to GSA-PR-01) for the module(s) and assurance level(s) specified in the scope of this certificate."
You may reproduce this wording exactly in your communications where appropriate. You must not alter it or use wording that changes its meaning.
Approved Marketing Claim Examples:
[Product Name] is certified under the Guardian SecureApp™ Scheme for Module A – Web Application Security at Level 2 (Enhanced Assurance). Certificate No. [XXXX]. Verify at [directory URL].
[Company Name] today announced that [Product Name] has achieved Guardian SecureApp™ certification for Module C – API / Microservices Security at Level 3 (High Assurance), independently verified by Guardian Assessment Private Limited under ISO/IEC 17065.
[Product Name] holds current Guardian SecureApp™ certification for Modules A and B at Level 2 (Enhanced Assurance), issued by Guardian Assessment Private Limited. Certificate details are available in the Guardian SecureApp™ Public Directory at [URL].
Prohibited Claim Examples:
"[Company Name] is Guardian SecureApp™ certified."
Why this is prohibited: Certification is product-specific, not organisation-wide. This implies all products and services of the company are certified, which is misleading.
"Our platform is fully secure and certified by Guardian SecureApp™ — your data is guaranteed to be protected."
Why this is prohibited: Certification does not guarantee the absence of vulnerabilities or breaches. Such a claim is factually incorrect and misleading to customers.
"Guardian SecureApp™ certified, meaning we are fully compliant with GDPR and all data protection laws."
Why this is prohibited: Certification does not imply compliance with any specific law or regulation unless explicitly stated in the certification scope.
Continuing to display the Guardian SecureApp™ mark on your website after your certification has expired, been suspended or withdrawn.
Why this is prohibited: All use of the mark must cease immediately when certification is no longer Active.
| Context | Rule | Requirement |
|---|---|---|
| Product Website | Display on the certified product's dedicated page, not the company homepage unless product-specific context is clear | Mark, module, level, certificate number or directory link |
| Marketing Materials | Use only in materials that specifically describe or promote the certified product | Mark, "Guardian SecureApp™ Certified", module, level |
| Email Signatures | Permitted only where the email context relates to the certified product | Module, level and directory link |
| App Stores / Product Listings | Permitted in product descriptions for the certified product | State module, level and link to directory for verification |
| Proposals and Tenders | Permitted where specifically referencing the certified product's security | Include certificate number or directory reference for verification |
| Social Media | Permitted in posts announcing certification or referencing the certified product | Include module, level and a link to verify certification |
| Product Packaging | Permitted where the product is clearly identified on the packaging | Must include module and level; reference to certificate number recommended |
- Always use the official mark artwork file provided by Guardian (GSA-F-42 / GSA-F-44). Do not recreate the mark from memory, screenshots or low-resolution copies.
- Minimum size: digital — 80 pixels wide; print — 20mm wide.
- Clear space: maintain a clear space around the mark equal to the height of the mark's letter "G" on all sides.
- Colour: use the official full-colour version wherever possible. Single-colour (black or white) may be used only where colour is not available.
- Background: display on a plain white or light background. Use the approved reversed (white) version on dark backgrounds.
- Do not rotate, skew, distort, stretch, compress or otherwise alter the proportions of the mark.
- Do not add effects such as shadows, glows, embossing, gradients or outlines to the mark.
- Do not place the mark inside a shape, frame or container not provided by Guardian.
You are responsible for keeping all public references to your Guardian SecureApp™ certification accurate and up to date throughout the certification cycle:
- Update your website, marketing materials and other public references promptly whenever your certification status changes.
- Remove or update all references to the certification if the scope is reduced — ensure the reduced scope is accurately reflected in all public materials.
- Immediately remove the mark and all certification claims from all public materials if your certification is Suspended, Withdrawn or Expired.
- Check the Guardian SecureApp™ Public Certified Products Directory periodically to confirm your listing accurately reflects your current certification status and scope.
⚠ Immediate Action Required on Suspension or Withdrawal
- If Guardian notifies you that your certification has been Suspended or Withdrawn, you must remove the mark and all certification claims from all public materials immediately — the same day you receive notification.
- Continuing to display the mark after suspension or withdrawal is a serious breach of the Scheme Rules and may result in legal action.
Misuse of the Guardian SecureApp™ certification mark or certificate is a breach of the Scheme Rules and the certification agreement. Depending on the severity and persistence of the misuse, consequences may include:
| Severity | Possible Consequence |
|---|---|
| Minor / Unintentional | Written notification and request to correct within a defined timeframe (typically 10–15 working days). No impact on certification status if corrected promptly. |
| Moderate / Repeated | Formal warning recorded in the certification file. Requirement for corrective action plan. May trigger a special surveillance evaluation. |
| Serious / Persistent | Suspension of certification pending investigation and correction. Certificate and mark use must cease immediately during suspension. |
| Wilful Misuse / Failure to Correct | Withdrawal of certification. Removal from the public directory. Potential legal action to protect the certification mark. |
You may appeal any decision by Guardian regarding misuse of the mark in accordance with the Guardian SecureApp™ Complaints and Appeals process.
✔ Before using the mark — check all of the following
- My certification status is currently Active (not Suspended, Withdrawn or Expired).
- I am displaying the mark only in connection with the certified product — not other products or the organisation as a whole.
- The mark is accompanied by: the phrase "Guardian SecureApp™ Certified", the module(s), the assurance level, and the certificate number or directory link.
- I am using the official mark artwork file from Guardian — not a modified or recreated version.
- My claims about certification are accurate and do not guarantee security or imply regulatory compliance.
- I have not transferred or licensed the mark to any third party.
Requesting the Official Mark Artwork or Usage Queries
The official mark artwork files (vector and raster formats) are provided to certified clients upon request after certification has been granted.
Email: guardianassessment@gmail.com | Subject: "Mark Artwork Request – Certificate No. [your certificate number]"
Please include your organisation name, certified product name and certificate number in your request.