Trust Center
| Standard | Status | Target date | Last action |
|---|---|---|---|
| SOC 2 Type I | Readiness · pre-audit | Q2 2027 | Controls live, evidence collection running |
| SOC 2 Type II | Continuous evidence | Q4 2027 | 6-mo operating window started |
| ISO 27001:2022 | Readiness | Q3 2027 | Statement of Applicability drafted |
| HIPAA BAA available | Not yet | Enterprise contract | Per-customer DPA on request |
| PCI-DSS L1 | Not yet | 2028 | Self-assessment in scope plan |
| GDPR DPO appointed | Available on contract | Now | privacy@compliancly.ai |
| DPDP Act 2023 §10 DPO | Designated | Now | privacy@compliancly.ai |
| CERT-In §70B notification readiness | 6h SLA documented | Now | security@compliancly.ai |
Found a vulnerability? Report to security@compliancly.ai. PGP key on request. Acknowledgement within 48h, fix-by-severity SLA: Critical 24h · High 7d · Medium 30d. Researchers acting in good faith are not subject to legal action.
Currently invite-only. Open programme launching with first 100 customers. Email security@compliancly.ai to be invited.
We're early. We are building our first design-partner cohort and we say so on this page rather than fabricating logos. Want a slot? Email design-partners@compliancly.ai — first 25 organisations get a permanent founder-tier discount, direct line to engineering, and roadmap-vote rights.
Live status: app.compliancly.ai/public/status · Sub-processors: /sub-processors.html · DPA: /dpa.html · Security overview: /security.html