Airclerk is building the trust posture required to support Claude implementation in regulated financial services. Security, governance and auditability are treated as central to implementation — not as a later phase.
Airclerk is actively pursuing ISO 27001 and SOC 2 Type 2 as part of our commitment to supporting regulated financial services customers.
Information security management system. Programme underway with target certification within 12 months.
Security, availability and confidentiality. Controls implemented; audit window starting.
Source control, code review, dependency scanning and release controls aligned with secure development practice.
Formal subprocessor list and review cadence. Material providers documented and contracted.
Documented incident response and breach notification process with named owners.
SSO, MFA, least privilege, periodic access reviews and joiner/mover/leaver discipline.
We provide a security and governance pack to assist procurement, risk and security teams during vendor onboarding. Includes policy excerpts, subprocessor list, architecture overview and AI governance principles.