Security, Compliance & Data Protection at AiPrise

Last updated: April 22, 2026

AiPrise is built on a foundation of security and compliance. This article covers our compliance posture and how to access the documentation you need.

SOC 2 Type II Compliant

AiPrise is SOC 2 Type II compliant, audited annually by an independent third-party.

GDPR Compliance

AiPrise is actively working toward full GDPR compliance. We have implemented data processing agreements (DPAs), data subject access request procedures, data retention and deletion policies, and sub-processor transparency.

AiPrise Trust Centre

All compliance documentation — including our SOC 2 Type II audit report, penetration test summaries, security policies, and other supporting materials — is available through our Trust Centre.

Visit the AiPrise Trust Centre →

(You will be asked to provide your details to access documentation. Requests are typically processed within 2 business day.)

If you are undergoing a vendor security review, due diligence process, or need compliance documentation for your internal audit, the Trust Centre is your one-stop resource. Available documentation includes:

  • SOC 2 Type II audit report

  • Penetration test summary report

  • Information security policies

  • Data processing agreement (DPA)

  • Business continuity and disaster recovery overview

  • Sub-processor list

  • Privacy policy

Frequently Asked Questions

Is AiPrise SOC 2 compliant? Yes. AiPrise is SOC 2 Type II compliant. Our audit is conducted annually by an independent third-party auditor and covers security, availability, and confidentiality controls.

Is AiPrise GDPR compliant? AiPrise is actively working toward full GDPR compliance. We have implemented key data protection measures including encryption, access controls, and data processing agreements, and are finalising the remaining requirements.

Where can I access AiPrise's audit reports and security documentation? All compliance documentation is available through our Trust Centre. Please visit the link above to request access.

Does AiPrise conduct penetration testing? Yes. We engage independent security firms to conduct regular penetration tests. A summary of the most recent test results is available through the Trust Centre.

How does AiPrise handle my customers' PII? All personally identifiable information (PII) processed through AiPrise — including identity documents, selfies, and biometric data — is encrypted in transit and at rest, subject to strict access controls, and handled in accordance with our data processing agreement and privacy policy.

Can I get a Data Processing Agreement (DPA)? Yes. A DPA is available through our Trust Centre or by contacting your account manager.

What cloud infrastructure does AiPrise use? AiPrise runs on SOC 2-certified cloud infrastructure with data centres in multiple regions. For specific data residency requirements, please contact your account manager.

If you have additional security or compliance questions that aren't covered here, please reach out to us at security@aiprise.com