Are there policies mandating the implementation and assessment of security controls at Xoxoday?

Yes, at Xoxoday We perform quarterly VAPT and have static code analysis via SonarQube

Did this answer your question?
...