Veridra
Built for regulated environmentsEU AI ActNIST AI RMFSR 11-7ISO 42001 (mapped)SOC 2 (in progress)
PlatformSolutionsArchitectureTrustDevelopersCompanyRequest review
Trust Center

Audit-grade security. Full disclosure.

The assurance layer has to clear a higher bar than what it assures. This is where we publish that bar — honestly, in full, current as of today.

Trust Signals

Trust signals for regulated AI.

Each trust signal is labeled with its current status so buyers can distinguish active work, internal framework mapping, and future roadmap items.

SOC 2 TYPE II

IN PROGRESS

Independent audit readiness work underway.

ISO 27001

MAPPED

Internal ISO 27001 control mapping is available on request for diligence and procurement reviews.

ISO 42001

MAPPED

Internal ISO 42001 control mapping is available on request for diligence and procurement reviews.

GDPR

ALIGNED

Product and policy posture are designed against GDPR principles; supporting materials are available on request.

EU AI Act

MAPPED

Internal article-level mapping for high-risk AI obligations is available on request.

NIST AI RMF

MAPPED

Internal NIST AI RMF function mapping is available on request.

What each status means

IN PROGRESS

Active readiness or audit preparation is underway.

ROADMAP

Planned certification or framework work; not yet completed.

MAPPED

Veridra maintains internal control mappings to framework requirements; supporting materials are available on request.

ALIGNED

Product and policy posture are designed to follow the framework's principles; supporting materials are available on request.

CERTIFIED

Only used after independent certification is complete.

Important: Mapped and aligned statuses indicate internal framework mapping, not third-party certification. Request supporting materials if you need them for diligence.

Our commitment

We are transparent about where we are today and where we are headed. New certifications and published mapping materials will be added as we achieve them.

Request mapping documentation
Frameworks supported

Framework coverage across regulated environments.

Veridra maintains internal control mappings to decision evidence, workflows, and audit-ready artifacts across the frameworks buyers actually ask about. Supporting materials are available on request.

core

EU AI ActNIST AI RMFISO/IEC 42001SR 11-7

security

SOC 2ISO 27001GDPRNIS2DORA

regulated

HIPAAHITRUSTFedRAMPCMMCCJIS

regional

CPS 234Essential EightCyber EssentialsCRICustom frameworks

Framework mapping does not imply certification. Certification status is shown separately so buyers can distinguish internal mapped controls, aligned posture, active work, and future roadmap items.

Areas of trust

Security overview

Zero trust, mTLS, SPIFFE identities, audit-grade boundaries.

Read →
Encryption

At rest, in transit, in signing.

Read →
Data protection

Tenant isolation, residency, retention.

Read →
EU AI Act alignment

Article-level mapping and evidence support for high-risk obligations.

Read →
NIST AI RMF

Govern, Map, Measure, Manage function mapping available on request.

Read →
SOC 2 readiness

Type II observation period in progress.

Read →
ISO 42001

AI management system control mapping available on request.

Read →
Status page

Live uptime and incident history.

Read →
Responsible AI

How we build the assurance layer.

Read →
Disclosure philosophy

We publish what we've done. We publish what we haven't.

Each trust signal is labeled with its current status so buyers can distinguish active work, internal framework mapping, and future roadmap items. If you need a specific mapping, attestation, assessment report, or third-party review, request it — we'll send what we have and honestly label what we don't.

Request trust documentation →