Ketryx Trust Center | Powered by SafeBase
Trust Center
Welcome to the Ketryx Trust Center
Thanks for stopping by. This Trust Center is your single source of truth for Ketryx security, privacy, and quality assurance materials, built to support vendor risk reviews, audits, and validation activities with minimal back-and-forth.
🔒 Access requires a signed MNDA. Before materials are shared, a Mutual Non-Disclosure Agreement must be in place. Sign the MNDA here to get started.
What you'll find here
✅ ISO/IEC Certificates
Evidence of our certified management systems and ongoing compliance.
✅ Validation Package
Documentation to support your internal validation and supplier qualification activities.
✅ SOC 2 Report
Independent assurance reporting over our controls.
✅ Part 11 Compliance (Self-Assessment)
Our assessment and supporting information for Part 11 expectations.
Need something else?
If you don't see what you need, or you want help mapping these materials to your internal requirements, reach out to your client operations contact and we'll get you to the right information quickly.
Compliance
Documents
Get access
Reports
Self-Assessments
Subprocessors
| Company | Purpose | Location | Additional Details |
|---|---|---|---|
| Anthropic | AI/LLM inference, powers AI-assisted features within the platform | US | Data categories: user-submitted prompts and AI-generated responses. Retention: per Anthropic API data retention policy (zero-retention API option available). Security: SOC 2 Type II, encryption in transit and at rest. |
| Langfuse | AI observability and LLM tracing. Monitors LLM inputs, outputs, and performance metrics | US | Data categories: LLM prompts, completions, latency metadata, trace logs. Retention: configurable per project settings. Security: encryption in transit and at rest, EU data residency available. |
| Datadog | Infrastructure monitoring, error tracking, distributed tracing, profiling, log management, RUM, and database monitoring | US | Data categories: application logs, metrics, traces, user session data, database query performance data. Retention: 15 months (metrics default), configurable. Security: SOC 2 Type II, ISO 27001, encryption in transit and at rest. |
| PostHog | Product analytics and user behavior tracking | US, EU | Data categories: user events, session activity, feature flag evaluations, behavioral analytics. Retention: configurable. Security: SOC 2 Type II, EU data residency available, self-hosted option available. |
| OpenAI | AI/LLM inference — AI-powered features and natural language processing | US | Data categories: user-submitted prompts and AI-generated responses. Retention: per OpenAI API data retention policy (zero data retention available via API). Security: SOC 2 Type II, encryption in transit and at rest. |
| Amazon Web Services (AWS) | Cloud hosting, compute, object storage, and managed infrastructure services | US, EU | Data categories: all application and customer data, backups, system logs. Retention: per defined data lifecycle and backup policies. Security: ISO 27001, SOC 2 Type II, ISO 27017, HIPAA-eligible services, encryption in transit and at rest. |