Enterprise trust

One URL to forward to security and procurement

Every trust, security, architecture, legal and procurement resource Privian publishes — indexed on a single page a founder can share in one message.

As of 2026-07-01. Links point at the canonical version of each asset.

Definition

The Enterprise Trust Package is a single Privian URL that indexes every trust asset a security or procurement reviewer typically asks for — Blueprint, Trust Center, Data Path, Architecture, Security, Subprocessors, DPA, Compliance Roadmap, and the questionnaire framework. Forward it once instead of assembling a packet.

Definition

What this page is

Reviewers move faster when the vendor answers with one URL, not five attachments.

Core trust resources

What is inside

  • Privian Blueprint

    Single-document procurement & security review reference. PDF + web version.

  • Blueprint Guide

    HTML companion explaining what the Blueprint covers and how each audience uses it.

  • Trust Center

    Posture, controls, retention boundaries, customer-owned credentials.

  • Compliance Roadmap

    Implemented controls, in-progress work, planned attestations — with no invented dates.

  • Data Path

    What reaches the model, what is retained, what is discarded.

  • Architecture

    How the gateway, masking and rehydration fit together end-to-end.

  • Security

    Detailed security model and data-handling posture.

  • Subprocessors

    Operational providers and the BYOK boundary.

  • DPA overview

    Data Processing Addendum — controller/processor roles, security measures, transfers.

Procurement assets

Questionnaire, risk assessment and due diligence

How to use this page

One URL, six workflows

Framework

Forwarding patterns

  1. 01

    Forward to procurement

    Send this URL when procurement asks for a vendor security packet — it links every asset they typically request.

  2. 02

    Share during security reviews

    Use as the top-of-thread reply when a reviewer opens an AI security questionnaire. Link the Blueprint for the deep read.

  3. 03

    Send after technical evaluations

    Pair with the Data Path and Architecture links once the engineering side has approved the integration.

  4. 04

    Include in RFP responses

    Quote the Blueprint sections directly and reference this page as the canonical index of supporting documents.

  5. 05

    Attach to DPA discussions

    Legal teams can review the DPA overview and subprocessor list in parallel with the executed agreement.

  6. 06

    Onboard internal champions

    Give a technical champion inside the buyer a single URL they can reshare across security, legal and engineering.

Coverage

What this page answers

Framework

Review coverage map

  1. 01

    Data path & retention

    Blueprint §2–§4, Data Path, Security & Data Handling.

  2. 02

    Credential handling & BYOK

    Blueprint §5, /docs/concepts/byok, Trust Center.

  3. 03

    Subprocessors & providers

    /legal/subprocessors, /resources/subprocessors, Blueprint §6.

  4. 04

    Legal & contracting

    /legal/dpa, /legal/privacy, /legal/terms, /legal/acceptable-use.

  5. 05

    Compliance posture

    /compliance-roadmap with dated, honest status per item.

  6. 06

    Questionnaire responses

    AI security questionnaire, vendor risk assessment and due diligence articles.

For items that require a signed document — a DPA, a customer-specific questionnaire, a security review call — contact the Privian team directly.

Send one document

Blueprint

FAQ

Frequently asked questions

What is the Enterprise Trust Package?
A single page indexing the trust, security, architecture, legal and procurement resources Privian publishes. It is designed to be forwarded once and to answer the majority of an enterprise security review without back-and-forth.
Is this a substitute for a signed DPA?
No. A signed Data Processing Addendum is available on request. The Trust Package points at the DPA overview and is used alongside the executed agreement, not instead of it.
Does this replace a security questionnaire response?
It answers most of the standard questions. For customer-specific questionnaires, this page plus the Blueprint typically covers 70–90% of items; the remainder is handled by direct written response.
How is this different from the Trust Center?
The Trust Center is the deep reference. The Trust Package is the shareable entry point that links into every resource in one hop and explains how to use each one during a review.
How is this different from the Blueprint?
The Blueprint is a single document (PDF + web version) covering data path, retention, BYOK and scope. The Trust Package indexes the Blueprint alongside every other trust asset a reviewer might request.