We are architecting our systems to meet rigorous global standards from the first line of code. We view compliance as a foundational constraint, not a retrospective checkbox.

SOC-2

SOC 2 Type II

Security & Availability

Current PhaseTarget

IMPLEMENTING CONTROLSQ3 2026

ISO-27001

ISO 27001

Information Security Mgmt

Current PhaseTarget

ARCHITECTURAL ALIGNMENTQ4 2026

GDPR

GDPR / CCPA

Data Sovereignty

Current PhaseTarget

ADHERENT BY DESIGNACTIVE

EU-AI

EU AI Act

High-Risk Systems

Current PhaseTarget

GAP ANALYSISONGOING

Note: Blankline is currently in the pre-audit architectural phase. We align our internal controls with SOC 2 Trust Services Criteria and ISO 27001 frameworks to ensure seamless certification readiness upon commercial deployment.

System Status: Monitoring

Security Research

We maintain a strict safe harbor policy for good-faith security research. If you discover a vulnerability in Blankline architecture, report it via our encrypted channel.

Critical Bounty TierRewards up to $50,000 USD for RCE/PrivEsc

Response ProtocolTriage within 12 hours. Patching within 48h.

Encryption MandateAll reports must be PGP encrypted.

security_contact.txt4.2 KB

$cat contact_email

security@blankline.org

$gpg --export-key 0x9A2B

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQINBF2s5nUBEACu8q7...[TRUNCATED_FOR_DISPLAY]...x9A2B3C4D

-----END PGP PUBLIC KEY BLOCK-----

Fingerprint: A1B2 C3D4 E5F6 G7H8Key ID: 0x9A2B

Legal & Compliance.

Governance Documents

Terms of Service

Privacy Policy

Acceptable Use Standard

Data Processing Addendum

Standards Alignment

SOC 2 Type II

ISO 27001

GDPR / CCPA

EU AI Act

Security Research

Legal &
Compliance.