| Framework | Requirement | How We Comply |
|---|---|---|
| ISO 27001 | Formal vulnerability management policy and procedures | Documented vulnerability management policy, regular audits, records of all vulnerabilities and remediation |
| ISO 42001 | AI-specific security controls and risk management | Continuous scanning of AI/ML dependencies, security reviews of AI features, responsible AI policies |
| SOC 2 | Timely remediation of vulnerabilities | Defined SLAs for each severity level, tracking and reporting of remediation timelines |
| GDPR | Appropriate technical measures to protect data | Vulnerability management prevents data breaches, regular security assessments |
Our vulnerability management processes are audited annually as part of our ISO 27001 certification. Audit reports are available to customers on Pro and Enterprise plans.
Related Topics
Penetration Testing
Learn about our annual external security assessments
Responsible Disclosure
Report security vulnerabilities to our team
Incident Response
See how we respond to security incidents
Security Overview
Return to the security overview