Compliance

SOC 1, SOC 2, and ISO 27001 certifications are expected in January 2027.

Here’s exactly where that stands right now.

Security certifications

SOC 1, SOC 2, and ISO 27001, expected January 2027.

An outside auditor is actively reviewing our controls across all three standards right now.

Expected Jan 2027

SOC 1

Covers the financial and operational controls behind our platform.

Expected Jan 2027

SOC 2

Under independent audit now, covering security, availability, and confidentiality controls.

Expected Jan 2027

ISO 27001

Running in parallel, the international standard for information security management.

How we handle your data

Retailers hand us real inventory data. Here’s how it’s handled.

Your product data, your store performance numbers, and your operational patterns move through the same controls described below.

1

Encrypted in transit and at rest

Your data is encrypted moving between systems and while it’s sitting in storage.

2

Access follows role

The people who can see your data are the people whose job actually requires it.

3

Built with GDPR principles in mind

Given how many of our retailers operate across the UK and EU, our data handling is built around GDPR’s core requirements from the start.

4

A business continuity plan built for real use

Our business continuity and disaster recovery planning is being formalized now, covering failover and recovery time for core platform functions.

At scale, right now

The numbers behind the controls above.

8,000+

Retail locations running on ClarityRFID globally

70+

Countries with live ClarityRFID deployments

529M+

RFID tag reads processed in a typical week

Ahead of the curve

The EU Digital Product Passport becomes mandatory in 2027. We’re already building for it.

Starting in 2027, textiles sold in the EU will need a Digital Product Passport: a verifiable record of what a product is, where it came from, and what happens to it. That’s exactly the kind of item-level record RFID is built to create. Retailers who start now will have that record in place well before the deadline hits.

2027

EU DPP requirement takes effect for textiles

Item-level

The granularity DPP requires, and what RFID already gives you

Security questionnaires and audits

Vendor security questionnaires and audit documentation

Procurement and InfoSec teams can request documentation, completed questionnaires, or a direct conversation with someone qualified to answer specific security questions.

Contact us about compliance