What does the Trust Badge actually signal?

That the business has completed Legacy Core’s readiness review at the displayed tier and is listed in the Public Business Trust Registry. The badge is a visible shorthand for a verifiable record — clients can confirm status by clicking the badge or visiting the registry.

How are Silver and Gold earned?

Silver and Gold are never sold direct. They are earned either through Alliance Partner attestation backed by supporting evidence (free) or through independent third-party verification by a CISSP-credentialed reviewer or qualified MSSP. Self-attestation is never accepted.

How do I link the badge to verification?

Every credentialed business receives a verification URL of the form /verify/[credential-ID]. Wrap the badge image in a link pointing to that URL. The page returns the live credential state — active, renewal due, expired, suspended, or revoked.

What happens if someone misuses the badge?

Suspected misuse can be reported to verify@legacycore.com. Legacy Core investigates each report, contacts the business, and revokes the credential where misuse is confirmed. Revoked credentials remain visible in the registry as Revoked, and verification pages return that status.

My credential expired. Can I still display the badge?

No. The badge must be removed from all displays when the credential expires, lapses, or is revoked. Continued display is a misuse and can result in revocation.

Trust Badges

A credential your clients can verify in seconds.

Legacy Core™ issues Bronze, Silver, and Gold Trust Badges. Each badge links to a live verification page in the Public Business Trust Registry.

Get Credentialed Verify a Business

Trust Badge tiers

Three tiers signal progression in small business cybersecurity readiness. Each tier links to a public verification page.

Bronze

Bronze Trust Badge

Entry-level credential for businesses establishing a verifiable cybersecurity readiness baseline.

What it signals: the business has completed Legacy Core foundational readiness review and is listed in the public registry.

Silver

Silver Trust Badge

Intermediate credential for businesses operating documented controls and ongoing review.

What it signals: documented controls, periodic review, and continued alignment with small business cybersecurity readiness expectations.

Gold

Gold Trust Badge

Advanced credential for businesses demonstrating mature, sustained cybersecurity readiness practices.

What it signals: sustained controls, periodic third-party touchpoints, and a track record of credential renewal in good standing.

What it means — and what it does not

Honest about what the badge proves.

The Trust Badge is a credential, not a claim. It demonstrates commitment to a readiness baseline that has been independently reviewed by Legacy Core.

The Trust Badge means

A reviewed credential
The badge is issued only after Legacy Core reviews the readiness artifacts. Self-attestation is never sufficient.
A live verification link
Every badge display links to a real-time verification page in the Public Business Trust Registry. Status reflects current credential state.
Framework-aligned readiness
The credential orients to recognized small business cybersecurity readiness frameworks such as NIST CSF and CIS Controls.

The Trust Badge does not mean

Not a government credential
Legacy Core is a private credentialing authority, not a regulator. The badge is not a license, permit, or government endorsement.
Not a guarantee of any outcome
The badge demonstrates commitment to readiness; it does not promise the absence of risk or any particular incident outcome.
Not transferable
The credential belongs to the credentialed business. It cannot be assigned to subsidiaries, affiliates, or successor entities without re-credentialing.

Bronze. Silver. Gold.

How each tier is earned

Bronze is sold direct. Silver and Gold are earned outcomes that a business demonstrates over time — never purchased direct.

Bronze
Bronze Trust Badge
Entry credential for professional services small businesses establishing a verifiable cybersecurity readiness baseline.
Sold direct
- Sold direct
  Begin the credentialing pathway and earn Bronze through Legacy Core directly.
  $699
Silver
Silver Trust Badge
Intermediate credential for businesses operating documented controls and ongoing readiness review.
Earned — never sold direct
- Alliance Partner attestation
  Earned at no additional cost when an Alliance Partner attests to controls and supplies supporting evidence.
  Free with Alliance Partner attestation + evidence
- Third-party verification
  Earned through independent verification by a CISSP-credentialed reviewer or qualified MSSP.
  $299
Gold
Gold Trust Badge
Advanced credential for businesses demonstrating mature, sustained cybersecurity readiness practices.
Earned — never sold direct
- Alliance Partner attestation
  Earned at no additional cost when an Alliance Partner attests to mature controls and supplies supporting evidence.
  Free with Alliance Partner attestation + evidence
- Third-party verification
  Earned through independent verification by a CISSP-credentialed reviewer or qualified MSSP.
  $299

Display guidance

Display the badge where clients see you.

Wherever the badge appears, it must link to your verification URL. That live link is what makes the credential trustworthy.

Display the Trust Badge on your business website, in email signatures, in proposals, and on client-facing collateral.
Link every badge image to your verification URL so clients can confirm credential status in real time.
Use the tier label correctly: Bronze, Silver, or Gold — whichever tier you currently hold.
Include the badge in physical signage at your place of business and in printed deliverables.

Do not

Do not modify the badge artwork, color, proportions, or wording.
Do not display a tier higher than the one currently issued to your business.
Do not display the badge after a credential has expired, lapsed, or been revoked.
Do not imply a tier or status that is not reflected in the public registry.

Verification link behavior

Every credential has a verification URL at /verify/<credential-ID>. The page returns the live credential state in real time: Active, Renewal Due, Expired, Suspended, or Revoked.

See a verification page

Misuse and revocation

Misuse undermines every credential in the registry.

Reports of badge misuse — display after expiration, display of a tier the business has not earned, modified artwork, or impersonation of a credentialed business — are investigated by Legacy Core. Confirmed misuse results in revocation. Revoked credentials remain visible in the registry as Revoked so the public record reflects accurate status.

Report suspected misuse: verify@legacycore.com

Frequently asked questions

What does the Trust Badge actually signal?
That the business has completed Legacy Core’s readiness review at the displayed tier and is listed in the Public Business Trust Registry. The badge is a visible shorthand for a verifiable record — clients can confirm status by clicking the badge or visiting the registry.
How are Silver and Gold earned?
Silver and Gold are never sold direct. They are earned either through Alliance Partner attestation backed by supporting evidence (free) or through independent third-party verification by a CISSP-credentialed reviewer or qualified MSSP. Self-attestation is never accepted.
How do I link the badge to verification?
Every credentialed business receives a verification URL of the form /verify/[credential-ID]. Wrap the badge image in a link pointing to that URL. The page returns the live credential state — active, renewal due, expired, suspended, or revoked.
What happens if someone misuses the badge?
Suspected misuse can be reported to verify@legacycore.com. Legacy Core investigates each report, contacts the business, and revokes the credential where misuse is confirmed. Revoked credentials remain visible in the registry as Revoked, and verification pages return that status.
My credential expired. Can I still display the badge?
No. The badge must be removed from all displays when the credential expires, lapses, or is revoked. Continued display is a misuse and can result in revocation.

Earn the badge. Display it. Let clients verify.

Bronze is the entry credential. Silver and Gold are earned over time as readiness matures.

Get Credentialed Verify a Business