Last updated: 7 April 2026
This page provides a high-level summary of Mercatus Ltd.’s approach to business continuity and disaster recovery. It is intended for clients, partners, and due diligence requests and does not replace internal operational procedures.
1. Purpose and Scope
Mercatus maintains business continuity and disaster recovery measures designed to support the continued delivery of critical services, protect client information, and reduce operational disruption in the event of incidents affecting people, premises, technology, suppliers, or communications.
The framework applies to the continuity of business operations and the restoration of essential services following disruptive events, including technology outages, cybersecurity incidents, third-party failures, workforce disruption, and other operational emergencies.
2. Governance and Responsibility
Business continuity oversight is managed internally by Mercatus leadership and relevant operational owners. Responsibilities include:
- maintaining continuity and recovery procedures for critical activities;
- coordinating incident response and escalation;
- reviewing operational dependencies and risks;
- supporting communication with affected stakeholders when appropriate.
3. Continuity Principles
- prioritisation of critical client-facing and operational services;
- timely escalation and coordinated response to disruptive events;
- secure restoration of systems, data, and communications;
- protection of confidentiality, integrity, and availability of information;
- use of alternative working arrangements where necessary to maintain service delivery.
4. Technology Resilience and Recovery
Mercatus relies on a combination of internal controls and third-party technology services to support service resilience. Depending on the relevant service scope, resilience measures may include:
- controlled access to systems and information;
- use of cloud-based or hosted platforms with availability and recovery controls;
- backup and recovery arrangements for critical business data;
- endpoint, network, and security monitoring measures appropriate to the services delivered;
- restoration procedures intended to return critical operations to service in a controlled manner.
5. Workforce Continuity
Mercatus maintains organisational measures intended to support continuity of operations during workforce disruption. Depending on role and service requirements, this may include remote-working capability, reassignment of responsibilities, management escalation, and continuity planning for key operational functions.
6. Third-Party Dependencies
Where services depend on third-party providers, Mercatus takes those dependencies into account as part of operational continuity planning. The company may rely on vendor resilience, contractual protections, alternative arrangements, and internal escalation processes to reduce disruption risks.
7. Incident Response and Communication
Mercatus uses internal escalation and response procedures for operational and security incidents. Where an incident materially affects service delivery or client data, communication is handled through the appropriate internal and client-facing channels, subject to contractual, legal, and regulatory requirements.
8. Testing and Review
Business continuity and recovery arrangements are reviewed periodically and may be updated following material operational changes, testing activities, lessons learned, or relevant incidents.
9. Confidentiality of Detailed Procedures
For security reasons, Mercatus does not publish detailed internal recovery procedures, infrastructure mappings, escalation chains, or other sensitive operational documentation on its public website. Additional information may be made available to clients through the appropriate due diligence or confidentiality process where required.
10. Contact
For continuity, resilience, or due diligence questions, please contact info@mercatusoutsourcing.com.