The Evidence Library
The Evidence Library is your central repository for all audit proof. It is organized by SOC 2 Criteria (e.g., CC1.1, CC6.1).
Auto-Mapping: When a scan finds a vulnerability or confirms a security control (like TLS 1.3), it automatically generates a PDF evidence file and places it in the correct folder (e.g., CC7.1).
Using the AI Auditor
The AI Auditor is your 24/7 compliance assistant.
Gap Analysis
Click "Run Gap Analysis" in the dashboard. The AI will scan your policies and evidence library to identify missing items required for SOC 2.
Chat with Evidence
You can ask questions like:
- "Show me all evidence for CC6.1"
- "Do we have a Disaster Recovery Policy?"
- "List all critical vulnerabilities from last month"
Exporting for Auditors
When your audit begins, you can give your auditor Read-Only Access to the platform, or use the "Export Audit Pack" feature to download a zip file containing all your organized evidence and policies.