Brickanta AI Trust Center

Live monitoring by Noru

Security & Compliance

Last updated Feb 8, 2026

Brickanta

Build with Trust

Report a vulnerability Privacy Policy

Overview

EU AI Act

GDPR

ISO 27001

Certificate: SE559537-3647Certified

245

Controls

Resources

Compliance

Industry standards and regulatory compliance status

EU AI Act

EU Artificial Intelligence (AI)I Act (Regulation (EU) 2024/1689)

GDPR

General Data Protection Regulation (GDPR)

ISO 27001

ISO/IEC 27001:2022

Certified• SE559537-3647

Controls

Implemented across all categories

Asset Management

5 controls

Inventory Labels

Media Marking

Asset Transportation Authorization

Business Continuity

5 controls

Business Continuity Plan

Continuity Testing

Business Impact Analysis

Backup Management

2 controls

Backup Configuration

Resilience Testing

Configuration Management

6 controls

Baseline Configuration Standard

Configuration Checks

Time Clock Synchronization

Change Management

2 controls

Change Management Workflow

Change Approval

Cryptography

4 controls

Approved Cryptographic Technology

Key Repository Access

Software Signing

Data Management

14 controls

Data Classification Criteria

Data Inventory

Test Data Sanitization

Entity Management

8 controls

Board of Directors Structure and Purpose

Audit Committee

Organizational Structure

Identity and Access Management

11 controls

Logical Access Provisioning

Logical Access Review

Unique Identifiers

Incident Response

7 controls

Incident Response Plan

Incident Response

Incident Reporting Contact Information

Mobile Device Management

3 controls

Mobile Device Enrollment

Mobile Device Encryption

Configuration Management: Mobile Devices

Network Operations

4 controls

Network Policy Enforcement Points

Inbound and Outbound Network Traffic: DMZ Requirements

Network Segmentation

Security Governance

84 controls

Proprietary Rights Agreement

Information Security Program Content

Procedures

People Resources

5 controls

Background Checks

Organization Property Collection

Disciplinary Process

Privacy

29 controls

Privacy Program Review

PII Processing Agreements

Record of Processing Activity

Proactive Security

2 controls

Threat Hunting

Adversary Intelligence

Risk Management

14 controls

Service Risk Rating Assignment

Risk Assessment

Continuous Monitoring

Service Lifecycle

9 controls

Service Lifecycle Workflow

Allocation of Resources

Cybersecurity & Data Privacy Requirements Definition

Systems Monitoring

5 controls

Audit Logging

System Security Monitoring

System Availability Monitoring

Site Operations

8 controls

Secured Facility

Physical Protection and Positioning of Cabling

Provisioning Physical Access

Training and Awareness

7 controls

General Security Awareness Training

Developer Security Training

Payment Card Processing Security Awareness Training

Third-Party Management

5 controls

Third-Party Assurance Review

Vendor Risk Management

Vendor Non-disclosure Agreements

Vulnerability Management

4 controls

Vulnerability Scans

Enterprise Antivirus

Code Security Check

System Design Documentation

2 controls

Achieving Resilience Requirements

Standardized Terminology

Resources

Important documents and policy information

Organizational Roles & Responsibilities

Version 2026.1 • Last reviewed Jan 25, 2026

Business Continuity & Disaster Recovery Plan

Version 2026.1 • Last reviewed Jan 25, 2026

Network & Communications Standard

Version 2026.1 • Last reviewed Jan 25, 2026