It has been through their security review. Not just ours.
PERSUIT runs inside the legal functions of HSBC, IBM, SAP, UBS, and 200+ other large organisations. That means it has survived their security and procurement reviews — not just ours.
What those security teams found.
Every certification, attestation, and audit report listed here is current, independently verified, and available to your procurement team through our Trust Center.
ISO/IEC 27001:2022 certified
Certified against the most current version of the international information security management standard. Independently audited, not self-assessed.
SOC 1 Type 2 & SOC 2 report
SOC 1 Type 2 attested. SOC 2 report available under NDA. Both are available to download from PERSUIT's Trust Center once access is granted.
CSA STAR certified
Cloud Security Alliance STAR certification — the cloud-specific assurance programme built on ISO 27001. Relevant for enterprise cloud security reviews.
SSO & role-based access
SSO support built in. Role-based access controls and full audit logging across all platform activity — every firm selection, every decision, every change.
Hosted on Google Cloud
Infrastructure runs on Google Cloud with MongoDB and Qlik as trusted data providers. BC/DR policy in place with tested contingency planning.
Third-party security grades
SecurityScorecard: A. UpGuard: 865/950. Both independently assessed January 2025. External scores, not internal claims.
PERSUIT maintains a full Trust Center — built on SafeBase — where all security documentation is available to request. Pentest report, network diagram, data flow diagrams, SOC reports, subprocessor list, and more. Most documents are available under NDA as part of a standard evaluation.
Visit the Trust Center →Your procurement team will thank you.
All the documentation they need is already prepared and waiting in our Trust Center.