News & Updates

Greater focus on Deploy as Comply becomes Conveyor

Frank Macreery
Frank Macreery

Today, we’re excited to introduce Conveyor, a customer trust platform born out of the insights obtained building Aptible Comply. Conveyor is a new company spun out of Aptible whose mission is to build a more trustworthy internet by creating a network of customers and vendors that makes it simple to build trust through data security.

Aptible will continue to exist and Deploy will operate unchanged. Customers of Aptible who only use Deploy will experience no change (other than even greater focus on improving the Deploy product). Comply will become the foundation of the compliance management functionality available in Conveyor. Customers of Aptible who used Comply will be contacted by a success manager to help you understand how this change may impact you and how to proceed.

More about Conveyor:

In the decade since Marc Andreessen wrote his op-ed for the Wall Street Journal, “Why Software Is Eating the World,” his predictions about the effects of lowered startup costs and a massively expanded global market for software services have largely come true. It’s even more true today than in 2011 that more and more major businesses and industries are being run on software and delivered as online services.

At the same time, the old joke about how “the cloud is just someone else’s computer” also rings true in a different way, with terms like “supply chain attacks” coming into the mainstream from repeated large breaches like SolarWinds. With more businesses sharing more data with more cloud vendors, it’s never been more important to build trust with customers around data security.

So why is building trust more difficult than ever? Ten years ago, only a few enterprise SaaS vendors would have a SOC 2 or ISO 27001 certification, but today customers routinely subject vendors to scrutiny based on the data they process, regardless of the size of the vendor. Even small B2B SaaS companies are now required to provide compliance certifications, pen test results, and answers to lengthy security questionnaires to close deals. Larger SaaS vendors find their teams replying to dozens or even hundreds of security questionnaires per month.

For deals that proceed to vendor risk assessment, the ways customers and vendors build trust together are deeply broken and painful for both sides. Sales deals crawl as customers and vendors go back and forth proving trust. Signing NDAs, getting documents watermarked, and responding to questions are actions that happen with every deal but are not standardized. Sharing security documents in cloud folders and completing questionnaires in spreadsheets creates an unmanageable sprawl of files. Companies have sales teams and security/compliance teams, but no one focused on proving data security trustworthiness to customers. The sales team doesn’t know enough about security and the security team has bigger priorities than “selling.”

So far, the compliance software industry has only responded with ever-more complex ways to determine trustworthiness; Conveyor exists to make it more simple. Previously, the team behind Conveyor was building Aptible Comply, a GRC automation tool. Over and over again customers said the underlying reason to achieve compliance certifications, respond to questionnaires, share security reports, and perform all the other work around trust building were motivated by the desire to answer a simple customer question: Is it safe for us to do business together?

Conveyor believes there is a better way. Providing security information should be as easy as sharing a link. Questionnaires should be answered before questions are even asked. Building trust with customers should be fast and effortless. By enabling customers to connect with their vendors on Conveyor it’s possible for customers to instantly access security documents, get answers to questions, and build trust in their vendors, without vendors having to do extra work.

Many of the most trusted companies in the SaaS world are already using Conveyor to build trust with their customers. For example, Datadog, PagerDuty, and Sift each have thousands of customers and are all using Conveyor to streamline responding to security questionnaires and provide customers self-serve access to their security documents.

Conveyor exists to fix the broken process and speed up building trust around data security. It’s a customer trust platform that makes it easy for companies to build trust with their customers (and for customers to determine the trustworthiness of their vendors). Sign up today and join some of the most trusted SaaS companies in the world, as we make the internet more trustworthy, together!