Security and Compliance Automation Platform 

Replace manual GRC efforts, reduce costs, and save time preparing for audits and maintaining compliance. Drata is the world’s most advanced security and compliance automation platform with the mission to help companies earn and keep the trust of their users, customers, partners, and prospects.

We help thousands of companies streamline compliance for SOC 2, ISO 27001, HIPAA, GDPR, your own custom frameworks, and many more through continuous, automated control monitoring and evidence collection.

Drata is backed by ICONIQ Growth, Alkeon, Salesforce Ventures, GGV Capital, Okta Ventures, SVCI (Silicon Valley CISO Investments), Cowboy Ventures, Leaders Fund, Basis Set Ventures, SV Angel, and many key industry leaders. Drata is based in San Diego, CA with team members across the globe.

Compliance at Every Stage

Getting started, looking to scale GRC, or want to enhance your security compliance program? Drata meets you where you are in your journey.


New to compliance: Need to be SOC 2 or ISO 27001 compliant yesterday and don’t know where to start?


Scaling up a risk and compliance program and need a solution that grows with you?


Have an existing GRC program and want to power it with automation and streamlined workflows?

The Open Compliance Revolution

The compliance journey started with screenshots. Now, Drata is ushering in a new era of trust, automation, and openness. We’ve put the power in our customers’ and partners’ hands, and we’ll be alongside you every step of the way.