SOC 1, SOC 2, and ISO 27001 certifications are expected in January 2027.
Here’s exactly where that stands right now.
SOC 1, SOC 2, and ISO 27001, expected January 2027.
An outside auditor is actively reviewing our controls across all three standards right now.
SOC 1
Covers the financial and operational controls behind our platform.
SOC 2
Under independent audit now, covering security, availability, and confidentiality controls.
ISO 27001
Running in parallel, the international standard for information security management.
Retailers hand us real inventory data. Here’s how it’s handled.
Your product data, your store performance numbers, and your operational patterns move through the same controls described below.
Encrypted in transit and at rest
Your data is encrypted moving between systems and while it’s sitting in storage.
Access follows role
The people who can see your data are the people whose job actually requires it.
Built with GDPR principles in mind
Given how many of our retailers operate across the UK and EU, our data handling is built around GDPR’s core requirements from the start.
A business continuity plan built for real use
Our business continuity and disaster recovery planning is being formalized now, covering failover and recovery time for core platform functions.
The numbers behind the controls above.
8,000+
Retail locations running on ClarityRFID globally
70+
Countries with live ClarityRFID deployments
529M+
RFID tag reads processed in a typical week
The EU Digital Product Passport becomes mandatory in 2027. We’re already building for it.
Starting in 2027, textiles sold in the EU will need a Digital Product Passport: a verifiable record of what a product is, where it came from, and what happens to it. That’s exactly the kind of item-level record RFID is built to create. Retailers who start now will have that record in place well before the deadline hits.
2027
EU DPP requirement takes effect for textiles
Item-level
The granularity DPP requires, and what RFID already gives you
Vendor security questionnaires and audit documentation
Procurement and InfoSec teams can request documentation, completed questionnaires, or a direct conversation with someone qualified to answer specific security questions.
Contact us about compliance