Certification standards

The public standard behind the Transaction Veritas certification marks.

This page replaces the old workbook-style approach with a publishable standard. It sets out the scoring logic, control maturity model, domain weights, and full checklist for the IncubatorTrust and AcceleratorTrust certifications.

Scoring Model IncubatorTrust Standard AcceleratorTrust Standard Required Policies and Evidence

Scoring Framework

Maturity score used for both certifications

Each control is scored on a 0 to 5 scale and then weighted by criticality. Certification decisions depend on both total score and the absence of failed critical controls.

Score	Meaning
0	Not present. No meaningful evidence of design or operation.
1	Ad hoc. Informal practice exists but is inconsistent and undocumented.
2	Defined. Policy or process exists but implementation is weak or partial.
3	Operational. Control is active and supported by current evidence.
4	Strong. Control is consistent, monitored, and clearly embedded.
5	Leading. Control is measured, improved, and demonstrably mature.

Certification Thresholds

Public award thresholds

These thresholds apply across both standards unless Transaction Veritas expressly narrows the scope in writing.

Level	Threshold
Certified	Minimum 70 percent weighted score with no failed critical control.
Certified Plus	Minimum 82 percent weighted score with strong evidence discipline and no more than one weak high-priority control.
Certified Elite	Minimum 90 percent weighted score with strong performance across all critical domains.

Critical controls scored 0 or 1 require remediation before award unless Transaction Veritas issues a written conditional decision.
Criticality multipliers: Critical x4, High x3, Medium x2, Low x1.
Assessment stages: scoping, self-assessment, evidence review, interviews, sample testing, remediation, decision, issuance, surveillance.

IncubatorTrust Standard

Full public checklist for incubator certification

The IncubatorTrust standard focuses on long-duration founder support, shared environments, mentor governance, allocation integrity, and founder safeguarding.

Domain 1: Governance and accountabilityWeight 10%

Compliance owner is formally designated and accountable for standard maintenance.

Board or governing authority receives periodic oversight reporting.

Policy framework exists, is approved, and is reviewed on a recurring basis.

Conflict-of-interest declarations are collected and managed.

Delegation of authority is documented for high-impact decisions.

Incident escalation and decision rights are clearly defined.

Domain 2: Founder admissions and eligibilityWeight 10%

Application criteria are documented and shared with staff.

Selection decisions are recorded with rationale.

Fairness and anti-bias safeguards exist in review workflows.

Exceptions are escalated and documented.

Acceptance and rejection records are retained.

Programme terms are disclosed before onboarding.

Domain 3: Founder onboarding and legitimacy checksWeight 10%

Founder identity is verified through a documented process.

Startup or entity existence is checked before benefits are extended.

Beneficial ownership is reviewed where appropriate.

Restricted-party or sanctions screening is completed for relevant applicants.

Higher-risk founders or startups receive escalated review.

Onboarding records are complete and retained.

Domain 4: Shared workspace and facility complianceWeight 15%

Premises access control is defined and current.

Visitor management procedures are documented and followed.

Health and safety procedures are active and visible.

Emergency procedures are posted and periodically communicated.

Shared equipment access is authorized and controlled.

Physical incidents are reported, investigated, and retained.

Domain 5: Resource allocation integrityWeight 10%

Desk and resource allocation criteria are documented.

Grant, credit, and sponsored-support approvals are traceable.

Benefits are allocated fairly and consistently.

Staff cannot allocate resources outside approved authority.

Usage restrictions and entitlement terms are communicated.

Allocation disputes can be reviewed and escalated.

Domain 6: Mentor, advisor, and expert governanceWeight 10%

Mentor onboarding process exists and is followed.

Confidentiality or NDA commitments are documented.

Conflict checks are performed before mentor engagement.

Side-deal, exploitation, or unfair extraction rules exist.

Mentor conduct expectations are issued and understood.

Mentor-founder interactions are reviewable where needed.

Domain 7: IP and confidentiality stewardshipWeight 10%

IP ownership boundaries are clear in programme terms and agreements.

Confidential information handling rules are documented.

Shared storage and access permissions are controlled.

Sensitive startup materials are access-limited.

Staff and mentors understand confidentiality duties.

Offboarding removes access that is no longer required.

Domain 8: Founder safeguarding and ethical conductWeight 10%

Code of conduct exists and is communicated.

Anti-harassment and anti-retaliation policies are active.

Complaint intake channel is accessible and documented.

Investigation procedures are defined.

Power-imbalance safeguards exist for staff, mentors, and founders.

Event and community conduct expectations are enforced.

Domain 9: Data privacy and records managementWeight 7%

Privacy notice is issued and maintained.

Founder and applicant data inventory exists.

Access to personal and business data is role-based.

Retention and deletion rules exist and are applied.

Incident or breach response process is defined.

Sensitive data sharing is logged or otherwise controlled.

Domain 10: Third-party and partner oversightWeight 3%

Third-party and partner register is maintained.

Higher-risk partners are reviewed before engagement.

Confidentiality and data terms exist where required.

Sponsor access to founder information is controlled.

Partner boundaries are documented for universities, labs, and advisers.

Partner issues are escalated and tracked.

Domain 11: Sector-risk triage and referral readinessWeight 2%

Resident startups are screened for regulated or high-risk sectors.

Risk flags trigger escalation or specialist referral.

Referral pathways exist for legal or regulatory support.

Higher-risk residents are identified and tracked.

Staff are trained on escalation triggers.

Advice boundaries are documented so staff do not overstate legal guidance.

Domain 12: Monitoring, complaints, and audit readinessWeight 3%

Compliance issues log is maintained.

Remediation actions are assigned and tracked.

Periodic internal review occurs.

Sample files are audit-ready and evidence-linked.

Complaints and incidents are analyzed for recurring patterns.

Leadership receives compliance summaries.

AcceleratorTrust Standard

Full public checklist for accelerator certification

The AcceleratorTrust standard focuses on cohort governance, deal discipline, Demo Day controls, and founder and investor-facing credibility.

Domain 1: Programme governance and decision integrityWeight 10%

Programme governance structure is documented.

Selection and investment conflicts are managed.

Sponsor influence boundaries are defined.

Decision authority matrix is current and approved.

Escalation and exception approval processes exist.

Compliance ownership is assigned.

Domain 2: Cohort admissions and selection fairnessWeight 15%

Application criteria are documented and applied consistently.

Review process is comparable across applicants.

Interview or scoring process is evidence-based.

Reviewer conflicts are disclosed and handled.

Selection rationale is retained.

Accepted and rejected applications remain auditable.

Domain 3: Founder onboarding and startup verificationWeight 10%

Founder identity is verified through a documented process.

Entity status and existence are checked.

Beneficial ownership is reviewed where needed.

Sanctions or restricted-party screening is completed where relevant.

Geography and sector risk are reviewed.

Onboarding evidence is retained.

Domain 4: Standard deal and funding instrument governanceWeight 15%

Standard templates are controlled and current.

Non-standard terms require documented approval.

Founder disclosures are clear and reviewable.

Version control exists for all deal documents.

Execution workflow is tracked.

Signed documents are retained and retrievable.

Domain 5: Stipend, grant, and investment administrationWeight 10%

Payment approval rules are documented.

Segregation of duties exists for authorization and disbursement.

Payment records are complete and current.

Fraud prevention checks are built into payment workflows.

Use restrictions are communicated where applicable.

Exceptions are escalated and recorded.

Domain 6: Mentor, operator, and expert network governanceWeight 10%

Mentors and operators are formally onboarded.

Conflict checks are completed.

Confidentiality expectations are documented.

Rules prohibit unfair side arrangements with founders.

Conduct standards exist and are communicated.

Concerns can be reported, investigated, and resolved.

Domain 7: Demo Day and investor event complianceWeight 15%

Demo Day preparation follows a documented review process.

Claims in decks and pitches are substantiated.

Event participation and invitation rules are defined.

Confidentiality boundaries are clear for participants.

Investors receive fair and controlled access.

Post-event communications are governed.

Domain 8: Fundraising communications and representation integrityWeight 7%

Public and investor-facing claims are reviewable.

Alumni and performance claims are accurate.

Traction metrics can be substantiated.

Sponsor and partner endorsements are controlled.

Marketing avoids misleading or exaggerated claims.

Disputed representations trigger escalation.

Domain 9: Founder data, deck sharing, and confidentialityWeight 4%

Deck sharing permissions are controlled.

CRM and investor-list access are role-based.

Sensitive founder data is protected.

Shared folder or data room access is tracked.

Retention and deletion rules exist.

Offboarding removes unnecessary access.

Domain 10: Sponsor and partner governanceWeight 2%

Sponsor access to founders is governed.

Sponsor data rights and limitations are documented.

Startup participation in sponsor pilots is controlled.

Partners cannot bypass programme rules.

Benefits and obligations are disclosed to founders.

Partner issues are escalated and recorded.

Domain 11: Sector-risk triage and escalationWeight 1%

High-risk sectors are identified during intake.

Flagged startups receive enhanced review.

Staff know when specialist referral is needed.

Restricted or prohibited sectors are documented.

Risk decisions are recorded.

Escalation outcomes are tracked.

Domain 12: Monitoring, remediation, and recertificationWeight 1%

Findings register is maintained.

Remediation actions are assigned and tracked.

Complaints are analyzed for recurring themes.

Control reviews occur after each cohort or cycle.

Leadership receives periodic summaries.

Certification maintenance evidence is prepared for surveillance.

Required Policies and Evidence

What applicants are expected to maintain

Transaction Veritas assesses actual policy and evidence readiness, not self-attestation alone.

IncubatorTrust

Required policy set

Governance and compliance policy
Founder admissions and eligibility policy
Founder onboarding and verification SOP
Workspace, access, and facility safety policy
Resource allocation and benefits policy
Mentor and advisor conduct and conflict policy
Confidentiality and IP stewardship policy
Founder safeguarding and grievance policy
Privacy, data handling, and retention policy
Third-party and partner oversight policy
Incident reporting and escalation policy
Sector-risk triage and referral guidance

IncubatorTrust

Required evidence examples

Governance minutes and decision rights matrix
Admissions rubric and application records
Onboarding files and screening logs
Access control lists and visitor logs
Grant, desk, and credit allocation registers
Mentor NDAs and conflict declarations
Complaint registers and investigation samples
Privacy notices and retention schedules
Vendor and partner registers
Incident reports and remediation records

AcceleratorTrust

Required policy set

Programme governance and decision integrity policy
Cohort admissions and reviewer independence policy
Founder onboarding and startup verification SOP
Standard deal and document governance policy
Payment, stipend, grant, and investment administration SOP
Mentor and operator conflict and conduct policy
Demo Day and investor event compliance policy
Fundraising communication and representation policy
Founder data and confidentiality policy
Sponsor and partner governance policy
Sector-risk escalation policy
Findings, remediation, and recertification policy

AcceleratorTrust

Required evidence examples

Selection criteria, scoring sheets, and reviewer conflict forms
Onboarding files and verification logs
Controlled template library and version histories
Payment approvals and disbursement records
Mentor agreements and issue logs
Demo Day review checklists and claim substantiation records
Investor communication controls and CRM permissions
Sponsor access approvals and data-sharing records
High-risk startup escalation files
Post-cohort review reports and remediation trackers

Need the legal framework?

Certification Agreement

Use the draft certification agreement as the base contract governing scope, evidence submission, decision rights, surveillance, suspension, and certification status.

Open Agreement

Need badge usage rules?

Badge License

Use the badge license to control public use of the shield, required linking, alteration restrictions, misuse handling, and post-expiry takedown obligations.

Open Badge License