trust.atlaslogic.io

Security. Compliance. Transparency.

We help customers achieve and maintain information security certification — so we hold ourselves to the same standard. This Trust Center documents our compliance posture, the third parties we rely on, and how we protect your data.

ISO 27001: In progress · Q4 2026
SOC 2: Obs. begins Q4 2026
6: Vetted sub-processors
24/7: Security monitoring

Trust areas

Sub-Processors

Every authorized third party, the data they process, their certifications, and the GDPR transfer mechanism that applies.

View register

AI Governance

How we govern AI systems — provider routing, data handling, human-in-the-loop controls, EU AI Act readiness, and the ISO 42001 roadmap.

View AI posture

Legal Documents

Request our pre-signed DPA v2, review GDPR Art. 28 SCCs, and obtain certification or pen-test reports under NDA.

Request DPA

Security Practices

AES-256 at rest, TLS 1.3 in transit, RBAC/ABAC access control, secure SDLC, and annual CREST-accredited penetration testing.

Read overview

System Status

Real-time and historical uptime for the Atlas Logic platform, API, AI Compliance Engine, and Azure infrastructure.

All systems operational

Incident response SLA — binding commitments

MINUTES

Detect & confirm

From first Azure Monitor alert to confirmed incident.

HOUR

Notify you

Email + in-app + status page — exceeds GDPR's 72-hr window.

MINUTES

Contain

Affected systems isolated from confirmation.

BUSINESS DAYS

Full report

Root cause, data impacted, actions, and prevention in writing.

Sub-Processor change notifications

We notify customers at least 30 days before adding any new sub-processor that materially affects how customer data is processed. Customers may object to a new sub-processor in line with our Data Processing Agreement. Subscribe at compliance@atlaslogic.io.