Compliance & Certifications

Certifications, audits,
and the receipts.

What we’ve executed, what’s in audit, what’s available on request, and what’s on the roadmap.

In Progress

SOC 2 Type II

Audit in progress. Attestation expected end of observation window.

Executed

HIPAA Business Associate Agreement

BAA template executed for all client firms handling PHI.

Executed

Anthropic Enterprise Deployment

Foundation models run under enterprise contract with no-training-on-input guarantees.

Roadmap

GDPR Controls

EU data subject controls roadmap. Not currently serving EU clients.

Available

Encryption at Rest + In Transit

AES-256 at rest. TLS 1.3 in transit. Per-tenant key separation on Enterprise.

Executed

NJ Rule 1:21-7 Compliance

Contingent-fee auctions run under the New Jersey sliding-scale ceiling.

Compliance Roadmap

What ships next.

Q2 2026SOC 2 Type II attestation report releaseIn Progress
Q2 2026Penetration test report (third-party, redacted version available on request)In Progress
Q3 2026ISO 27001 gap assessment completeRoadmap
Q4 2026GDPR controls implementation (pending EU expansion regulatory review)Roadmap
2027CCPA / state-by-state consumer privacy framework certificationsRoadmap

Need the full compliance packet?

Diligence-ready documents: BAA template, SOC 2 progress letter, penetration test summary, sub-processor list, data-flow diagrams, incident response plan. Sent within one business day.

Request compliance packet Product security details
Average turnaround: 4 hours during business days
Preferences
Text Size
100%