Comp AI, a San Francisco-based startup founded in 2025, announced on August 1, 2025, a $2.6 million pre-seed funding round to revolutionize enterprise compliance automation for frameworks like SOC 2, HIPAA, GDPR, and ISO 27001. The round, co-led by OSS Capital and Grand Ventures, with angel investors David Cramer (Sentry founder) and Ben Tossell (Ben’s Bites), aims to disrupt the traditionally manual, costly compliance market.
Funding: $2.6M pre-seed, co-led by OSS Capital and Grand Ventures, with angel investors David Cramer and Ben Tossell.
Mission: Help 100,000 companies achieve SOC 2, ISO 27001, and GDPR compliance by 2032, cutting costs from $25K+ annually.
Traction: Since April 2025 stealth launch, saved customers 2,500+ hours; 3,500+ companies in pre-launch testing.
Technology: AI-powered trust management platform with open-source collaboration, automating 90% of compliance tasks.
Key Product: Delve SOC 2, launched June 2025, achieves compliance in ≤4 weeks for as low as $3,000.
Growth Plans: Expand open-source platform and launch AI Agent Studio for evidence collection and vendor onboarding.
Market Context: Competes with Vanta, Drata, and Secureframe in a $10B+ GRC market growing 15% annually.
Announced on August 1, 2025, the $2.6 million pre-seed round positions Comp AI to capitalize on the growing demand for streamlined compliance solutions. OSS Capital, known for backing open-source innovators like ProjectDiscovery and Cal.com, and Grand Ventures, with investments in Astronomer and Tembo, co-led the round. The funding will drive:
Open-Source Platform Expansion: Enabling security professionals to contribute control templates and automation tools.
AI Agent Studio Launch: Moving from beta to general availability by November 2025, automating evidence collection, risk assessments, and vendor onboarding.
Team Growth: Actively recruiting to scale operations, per posts on X by founders Lewis Carhart (@lewisbuildsai) and Claudio Fuentes (@claud_fuen).
Joseph Jacks of OSS Capital praised Comp AI’s “speed of execution and customer obsession,” while Nathan Owen of Grand Ventures called it “a complete reinvention” of governance, risk, and compliance (GRC).
Compliance frameworks like SOC 2, HIPAA, and ISO 27001 are critical for securing enterprise contracts but are often manual, costing $25,000+ annually and requiring weeks of effort. Comp AI’s platform automates up to 90% of these processes, achieving “instant product-market fit” with 89% monthly growth. Key features include:
Delve SOC 2: Launched June 2025, it streamlines SOC 2 compliance in 4 weeks or less for as low as $3,000, compared to competitors’ $10,000–$50,000 fees.
Multi-Framework Support: Covers SOC 2, HIPAA, GDPR, ISO 27001, and 25+ standards via a centralized dashboard.
Automation Tools: AI-driven evidence collection, risk assessment, and vendor management, saving 2,500+ hours for early customers.
Since emerging from stealth in April 2025, Comp AI has attracted 3,500+ companies to its pre-launch testing and participated in Vercel’s Spring ’25 OSS initiative.
Founded by Silicon Valley entrepreneurs Mariano Fuentes, Lewis Carhart, and Claudio Fuentes, Comp AI leverages their experience navigating SOC 2 compliance at prior ventures. The team identified inefficiencies in legacy platforms like Vanta and Drata, which often require weeks of manual work. Comp AI’s platform has shown early success:
Customer Impact: Early adopters saved 2,500+ hours on compliance tasks.
Market Validation: 3,500+ companies joined its pre-launch testing program, with dozens churning from incumbents like Vanta and Drata.
The GRC market, valued at $10 billion in 2025 with a 15% CAGR, is ripe for disruption as enterprises face increasing regulatory pressure. Comp AI competes with Vanta, Drata, and Secureframe but differentiates with:
Cost Efficiency: Starting at $3,000 vs. competitors’ $10,000+.
Speed: Compliance in hours/days vs. months, per posts on X.
Open-Source Model: Community-driven templates and mappings, unlike proprietary platforms.
Netskope’s 2025 report on shadow AI risks underscores the need for secure, automated compliance, as 72% of genAI users bypass IT controls, amplifying data risks. Comp AI’s alignment with frameworks like OWASP Top 10 for LLMs positions it to address these concerns.
Comp AI plans to scale its platform and launch AI Agent Studio by November 2025, targeting 100,000 compliant companies by 2032. However, risks include:
Competition: Established players like Scytale, with dedicated experts, may challenge Comp AI’s market share.
Scalability: Rapid growth and hiring could strain resources.
Regulatory Shifts: Evolving standards like ISO 42001 for AI management may require platform updates.
Analyst sentiment, reflected on X, is bullish, with endorsements from investors like Nathan Owen (@nathan_owen) highlighting Comp AI’s disruptive potential.
Comp AI is a San Francisco-based startup founded in 2025 that's revolutionizing how companies approach compliance certification. The company provides an AI-powered trust management platform that automates compliance for major frameworks, including SOC 2, HIPAA, GDPR, ISO 27001, and 25+ other regulatory standards.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.