Trust Center

Everything your procurement team will ask for.

Compliance attestations, security posture, sub-processors, SLAs. All in one place, all publicly accessible, all current.

Compliance

HIPAA Business Associate Agreement
BAA template covering PHI processed on behalf of US Covered Entities.
GDPR DPA + EU SCCs
Article 28 DPA, Modules 2 & 3 of the EU SCCs, UK IDTA, Swiss FADP.
DPDPA 2023 Attestation
India Digital Personal Data Protection Act compliance.
CCPA / CPRA Notice
California consumer rights and our Service-Provider obligations.
Privacy Policy
What we collect, why, and how we handle it.

Security

Security overview
Encryption, isolation, audit logging, infrastructure.
Vulnerability Disclosure Policy
How to report a security issue. 2-business-day ACK. Safe harbor.
security.txt
RFC 9116 contact + policy declaration.
API reference
Live OpenAPI 3.0 schema for the ShieldMind API.

Operations

Support SLA + Escalation Matrix
P0/P1/P2/P3 response and resolution targets. Service credits.
Status page ↗
Live uptime and incident history. Subscribe to email updates.
Sub-processor list
Every third party that touches Customer Data and what they do.
Sub-processor notifications
Opt in to 30-day prior notice of any sub-processor change.

Commercial

Terms of Service
Master Services Agreement (MSA) governing every customer.
Data Processing Addendum (legacy)
Prior DPA — kept for reference. New customers use /legal/dpa-sccs.
Pricing
$10/seat/month, billed annually. 14-day free trial. $50K annual minimum.
ROI Calculator
Compare your current security-stack spend vs unified ShieldMind.

Need a SOC 2 Type II report?

We're in the SOC 2 Type II observation window. The Type I report is available under NDA today; Type II is expected end of 2026. Email bd@dtrasglobal.com to receive the latest report.