A curated list of Compliance Automation Tools: SOC 2 automation tools, HIPAA compliance software, GDPR, Privacy Automation, etc.
This directory was built and is maintained using the Ever Works Directory Builder platform.
The public-facing website is based on the open-source Directory Website Template.
- Vanta - Cloud-based trust management and compliance automation platform that centralizes and automates workflows for multiple security and privacy frameworks, including SOC 2, ISO 27001, HIPAA, and GDPR. Vanta connects to cloud infrastructure, HRIS, identity providers, and other systems to monitor controls, collect evidence, and track progress toward certifications and audits across multiple standards. (Read more)
soc2iso27001hipaa - Vanta Automated Compliance - Vanta Automated Compliance is a compliance automation product that continuously monitors systems and controls to streamline achieving and maintaining security and privacy certifications such as SOC 2, ISO 27001, HIPAA, GDPR and other frameworks. It automates evidence collection, control monitoring, and readiness for audits, making it suitable for startups, mid‑market, and enterprises pursuing security and regulatory compliance. (Read more)
soc2automationmulti-framework - Vanta Platform - Vanta’s trust management and compliance automation platform that streamlines security compliance workflows and audits, including SOC 2, ISO 27001, HIPAA and other frameworks. It automates evidence collection, continuous monitoring, and audit preparation to help organizations achieve and maintain certifications more efficiently. (Read more)
soc2iso27001gdpr
- Drata - Drata is an automated compliance platform that streamlines HIPAA and other security/compliance frameworks (such as SOC 2 and ISO 27001) through workflow automation, continuous control monitoring, automated evidence collection, asset and personnel tracking, and pre-mapped controls. Its HIPAA-focused solution includes customizable HIPAA-specific policy templates, integrated HIPAA-approved employee training, and real-time reporting to reduce compliance effort and costs while safeguarding protected health information (PHI). (Read more)
hipaasoc2automation - Vanta HIPAA Compliance Automation - A Vanta product module that automates HIPAA compliance for organizations handling protected health information (PHI), providing continuous control monitoring, evidence collection, and workflows to help meet U.S. healthcare regulatory requirements. (Read more)
hipaahealthcare - SecurityPal Assurance Management Platform - SecurityPal's Assurance Management Platform (AMP) is a comprehensive solution designed for modern security, governance, risk, and compliance (GRC) teams. It facilitates efficient management of security, privacy, and GRC reviews, ensuring faster and more reliable sales transactions and robust vendor assessments. The platform is architected to safeguard data, ensuring privacy, security, and compliance, which are essential for trust, reputation, and regulatory adherence. (Read more)
securityprivacycompliancedata protectionvendor assessment
- Drata ISO 27001 Hub - A centralized resource hub by Drata offering research, playbooks, checklists, and learning materials to help organizations understand and implement ISO 27001 compliance, complementing Drata’s broader compliance automation platform. (Read more)
iso27001automation - Vanta ISO 27001 Compliance Automation - A Vanta product module that automates ISO 27001 compliance by providing continuous security monitoring, evidence collection, and audit-ready reports to help organizations manage information risk and meet global expectations, especially for customers outside the US. (Read more)
iso27001automation
- Vanta GDPR Compliance Automation - A Vanta product module focused on GDPR compliance that helps organizations protect EU residents’ personal data, automate privacy controls, and demonstrate adherence to global privacy standards through continuous monitoring and evidence collection. (Read more)
gdprprivacy
- Vanta SOC 2 Compliance Automation - Cloud-based compliance automation and trust management product focused on SOC 2. Vanta automates evidence collection, helps scope SOC 2 reports, guides implementation of security controls, centralizes documentation, and connects organizations with auditors to streamline SOC 2 audits. (Read more)
soc2automation - Sprinto AI - Sprinto AI is an AI-native Governance, Risk, and Compliance (GRC) platform designed to streamline compliance processes for businesses at various stages of growth. It automates evidence collection, updates controls, and keeps organizations audit-ready, reducing the manual effort required for compliance management. (Read more)
AI-nativecomplianceaudit-readyautomationrisk managementSOC 2
- Please give us ⭐ on Github, it helps!
All product names, logos, and brands are the property of their respective owners. All company, product, and service names used in this repository, related repositories, and associated websites are for identification purposes only. The use of these names, logos, and brands does not imply endorsement, affiliation, or sponsorship.
This directory may include content generated by artificial intelligence (AI). While efforts have been made to ensure the accuracy and reliability of the information, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability, or availability of the information contained herein. Users are advised to independently verify the information before making decisions based on it.
We disclaim any responsibility for errors, omissions, or inaccuracies in the content, whether generated by humans, AI, or any other means. By using this directory, you agree to use it at your own risk and acknowledge that the information provided may not always be current or accurate.
If you believe that your intellectual property rights or other legal rights have been infringed, please contact us immediately at legal@ever.co and we will take appropriate action.
Shield:
This work is licensed under a
Creative Commons Attribution-ShareAlike 4.0 International License.
