ISMS Copilot

Compliance Information

• Regulatory Compliance: We adhere to relevant regulatory requirements, including GDPR and CCPA. We are also compliant with EU AI Act requirements for limited risk AI providers.
• Industry Standards: We are working towards ISO 27001 certification and SOC 2 attestation to demonstrate our commitment to security, availability, and confidentiality.
• Internal Policies: We have implemented comprehensive internal policies covering information security, data protection, acceptable use, incident response, and change management. Our list of policies is accessible on our Trust Center main page.
• Employee Training: All employees undergo regular compliance training to ensure adherence to our compliance requirements.
• Vendor Management : We carefully vet and monitor our vendors and subprocesses to ensure they meet our compliance standards. If they're outside EU, we require safeguards, typically SCCs. Key partners like Chatbase have achieved SOC 2 Type 2 attestation, demonstrating their commitment to security, availability, and confidentiality.
• Continuous Monitoring: There are areas multiple monitoring areas, including Stripe Radar for Payments and Card Fraud Prevention.

Get extra help

*ISMS Copilot is a “ChatGPT” for information security compliance and AI governance, providing AI assistance for your ISMS. It can guide you for implementing multiple frameworks (ISO 27001, ISO 42001, SOC 2) and regulations (DORA, NIS2, EU AI Act). We’re committed to secure your information, and ask you to use our AI securely.*

➡️ Get started with ISMS Copilot, the best AI assistant for infosec compliance.