Home / Security & Compliance / Compliance Documentation

Security & Compliance Documentation

We make our security posture transparent. Download our compliance artifacts below — SOC 2 summary, penetration test results, SBOM, and our vulnerability disclosure policy.

Schedule a Security Review

Public compliance artifacts

These artifacts represent a subset of our full compliance evidence pack. Artifacts marked Available Q3 2026 are currently in progress. Contact us to discuss NDA-gated full reports.

SOC 2 Type II

SOC 2 Type II Summary

Annual third-party audit report of our security, availability, and confidentiality controls conducted by a PCAOB-registered CPA firm. Current: 2025 audit in progress.

Current period: 2025 Annual cadence
Download Summary (PDF) Available Q3 2026
Penetration Testing

Penetration Test Results

Annual external penetration test conducted by Bishop Fox. Covers web application, API, and network layers across our production infrastructure. Last test: March 2026.

Last test: March 2026 Conducted by Bishop Fox
Download Executive Summary Available Q3 2026
SBOM

Software Bill of Materials (SBOM)

CycloneDX SBOM for all production services. Lists every third-party library, dependency version, and known CVE status across the AiT product family.

Format: CycloneDX JSON Updated on each release
Download SBOM (JSON) Available Q3 2026
Vulnerability Disclosure

Vulnerability Disclosure Policy

Our responsible disclosure program. If you discover a security issue in our products or infrastructure, this policy outlines how to report it and what to expect from us in return.

security@intelligentit.io 90-day coordinated disclosure
View Policy
NDA Required

Need the full SOC 2 report or detailed pen-test findings?

The full SOC 2 Type II report and unredacted penetration test findings are available under mutual NDA to qualified prospects and existing clients. Schedule a call and we’ll walk you through the evidence pack live.

Schedule a Call

Artifact update cadence

We maintain a predictable release schedule for all compliance artifacts so your security team can plan reviews in advance.

Artifact Frequency Last Updated Status
SOC 2 Type II Summary Annual 2024 (2025 in progress) In Progress
Penetration Test Executive Summary Annual March 2026 Current
Software Bill of Materials (SBOM) Per release On each production deploy Current
Vulnerability Disclosure Policy As needed May 2026 Current
Sub-processor List Quarterly Q1 2026 NDA Required
Data Processing Addendum (DPA) Annual review January 2026 On Request

Want a live compliance dashboard for your own organization?

AiT Trust Portal gives your clients and prospects a public-facing security posture page with always-current evidence — no more ZIP files or stale PDFs.

Explore AiT Trust Portal → Book a Demo

Page as of 2026-05-18. Compliance artifacts marked “Available Q3 2026” are in progress; contact security@intelligentit.io for current-cycle evidence under NDA. © Intelligent Group (DBA Intelligent iT) · intelligentit.io