Documentation menu

DOCUMENTATION

Trust Center

A Trust Center is the public face of your compliance posture — the page you point a prospect or customer to when they ask, "are you secure, and can you prove it?" EquanimGRC lets a tenant publish one from the same controls, evidence, and policies it already manages, so the public view is a projection of the real state rather than a separately-maintained brochure.

What you publish

Your Trust Center presents the posture you choose to make public: the frameworks you are aligned to, a summary of your controls, and the policies and documents you are willing to share. It is built from your live workspace, so it reflects current standing — when the underlying posture changes, the published view follows, instead of drifting out of date.

Public intake and access requests

Some material is public; some should only go to a counterparty under review. EquanimGRC handles both with a public intake: a prospect requests access through a form on your Trust Center, the request is recorded, and your team reviews and grants it. Sensitive documents are released to named requesters rather than posted openly, and every grant is auditable — you know who asked, who approved, and what they received.

Documents

The documents you expose — policies, summaries, certifications — are served to approved customers from your workspace, tied back to the policies andevidence they come from. Sharing a document is sharing the real artifact, with its provenance intact, not a re-keyed copy.

Verifiable by default

Trust only works if it can be checked. EquanimGRC publishes its own Trust Center atequanimgrc.com/trust and signs its trust documents with a published PGP key, so anyone can verify a statement came from us and was not altered. The same principle applies to the posture a Trust Center presents: it is a verifiable claim grounded in real records, not an unverifiable badge.

Why it is part of the platform

Keeping the Trust Center inside the same system that holds your controls, evidence, and policies means there is one source of truth and one place changes happen. The audience differs — auditors in an assessment, prospects on a Trust Center, your own team in the workspace — but the underlying facts are the same. See Frameworks & controls andAudit & reporting.