Announcing Vendict’s $10M Series A: To Scale the Only GRC Platform That Doesn’t Guess

For B2B software sellers in 2025, compliance isn’t just tedious – it’s dragging down your business.

Security questionnaires, third-party risk assessments, understanding new regulations, audit preparation. The manual, messy world of GRC (Governance, Risk, and Compliance) has turned into a sinkhole for time, resources, and patience.

We saw it coming years ago.
And we built Vendict to fix it.

Born AI-native, Built for Control

Long before LLM became a buzzword, we were applying NLP and knowledge engineering to security compliance workflows. We hired AI researchers in-house. We designed our own language models. We weren’t experimenting -- we were committed.

Today, that edge matters more than ever.

Where others bolt AI onto old workflows, Vendict was built AI-native from day one. That means:

  • AI that truly understands and completes tasks end-to-end
  • Immediate value — Vendict interprets your data without manual setup
  • Every answer is explainable and traceable
  • No hallucinations – ever
  • Context-aware, source-backed automation that works right away, without retraining or library upkeep

And now, we’re doubling down.

We’ve raised a $10M Series A led by Moneta VC and JAL Ventures, with continued support from NFX, Cardumen Capital, Disruptive AI, and Cyber Club London. That brings our total funding to $20M.

Why Now?

Because GRC isn’t just growing – it’s exploding.

  • Regulatory pressure is up
  • Risk tolerance is down
  • Third-party complexity is off the charts
  • AI-related risks are emerging fast

And compliance teams are still stuck copy-pasting into spreadsheets while the rest of the org moves at AI velocity.

That gap is where deals stall and risk grows. Vendict closes it.

The New Standard for Trust-Driven Compliance

Vendict isn’t just automating compliance. We're redefining what’s possible.

With our AI-native platform, companies can:

  • Respond to security questionnaires and RFPs in minutes, not days -- with answers grounded in real documentation, not guesswork.

  • Map internal controls across frameworks like SOC 2, ISO 27001, GDPR, and DORA and stay ahead of regulatory change with confidence.

  • Instant, Inside-Out Analysis of Third Parties – Instead of chasing questionnaire responses, Vendict analyzes a third party’s GRC posture directly from their certified documentation — saving you time and increasing the accuracy of answers.

  • Interactive Trust Centers, Built for Trust –Trust Centers are no longer static document hubs — they’re dynamic, AI-powered experiences. Vendict delivers instant, interactive, audit-backed answers with full traceability to source documentation, showcasing your security posture.

And they do it without compromising on accuracy, transparency, or control.

Our customers aren’t just moving faster — they’re turning compliance into a competitive advantage.

What’s Next
This round fuels our next phase of growth: delivering a truly end-to-end, AI-native GRC platform.
We’re building smarter workflows for risk reviews and audit preparation and continuing to ship AI capabilities that actually work in the real world.

Thanks for Believing

To the thousands of GRC experts already using Vendict — thank you.
Your trust, feedback, and partnership have been essential in shaping who we are and what we’ve built. Together, we’re streamlining and strengthening GRC workflows for a smarter, more resilient future.

We’re just getting started.

Ready to move faster — without cutting corners? Let’s talk.

Share & Subscribe
Ready to Get Your Time Back?

Give us only 20 minutes and we will show you how to get 20 hours back.

Book a Demo

We use cookies to improve your experience, analyze site usage, and personalize content and ads. See our Privacy Policy for details.