Wentzel Trust Center
Status: Aligned. Wentzel Investments LLC implements controls for SOC 2 Type 2 + ISO/IEC 27001:2022 but has not yet completed third-party audits. We use "Aligned" never "Compliant" or "Certified".

Trust Center Updates

Trust is easier to extend when you can see what changed and when. This is our running log of material updates to the trust center — most importantly, advance notice of any change to the subprocessors that handle your data. We aim to give reasonable notice before a new subprocessor begins processing customer data; the continuously maintained inventory is available to customers on request.

  1. Subprocessor list refreshed and simplified

    We refreshed our published subprocessor inventory so it precisely reflects the systems that handle customer data today: AWS, Cloudflare, Anthropic, Stripe, GitHub, Atlassian, Google Workspace, and Twilio. We also made explicit what we deliberately keep in-house — connectors, workflow orchestration, observability, and break-glass credentials — to keep the list of third parties short by design.

  2. In-house connector strategy confirmed

    We finalized our policy of building integrations on our own connector adapter with first-party OAuth clients, rather than routing customer credentials through a third-party integration broker. No external integration vendor sees customer tokens or data.

  3. Framework alignment published

    We published our alignment to SOC 2 Type 2 and ISO/IEC 27001:2022, operating to both under a single Wentzel Compliance Baseline. We describe our status as “Aligned” and will update it to reflect each independent report or certificate once it is in hand.

Looking for the current list of third parties that handle your data? See our subprocessors. Questions about a change here can go to security@wentzel.ai.