Certifications & assessments.
Current status of third-party audits and regulatory alignment. We update this page whenever a status changes â auditor name, gap-closure date, and a link to evidence where shareable.
SOC 2 Type I
In progressEvidence collection underway via Vanta. Auditor (Dansa D'Arata Soucia) engaged. Type II follows 12 months after Type I.
ISO 42001 (AI management system)
RoadmapTargeting Q1 2027. Gap analysis complete; control library mapped to existing audit + guardrail evidence.
EU AI Act conformance
AchievedArticles 4 (literacy), 26 (audit), 27 (FRIA), 50 (disclosure) implemented and enforced in runtime. See preflight checklist.
GDPR readiness
AchievedArticles 15â20 self-serve portal at /portal/dsar. Append-only ConsentEvent table. Per-region data residency.
California CPRA
AchievedDSAR portal supports CCPA/CPRA requests via the same UI; opt-out signal honored.
UAE PDPL
AchievedTenant data with homeRegion=uae pinned to ME-region storage + EU-equivalent processing safeguards.
Bangladesh DSA
AchievedBD-residency option pins data to bangladesh-local Postgres + Redis.
WCAG 2.2 AA (widget + dashboard)
AchievedKeyboard navigation, screen-reader support, AA color contrast, ARIA on every interactive control.
ADA Title II (US public sector)
AchievedRequired for US public-sector tenants effective 24 April 2026.