prodia.dev
Start Free
Prodia Systems Ltd

Certifications Roadmap

Last updated: 29 May 2026

Prodia publishes its certification posture transparently. We distinguish between controls and frameworks we already operate against, and certifications we are actively pursuing. We do not claim certifications we do not hold.

1. Current

  • GDPR-aligned โ€” Records of processing, DPIA process, controller/processor terms (DPA), data subject rights workflow, breach notification process, and international transfer governance in place.
  • AI Governance Framework โ€” Public statements aligned with the EU AI Act, NIST AI RMF, ISO/IEC 42001, and equivalent regimes covered in the Legal Pack.
  • Security Programme โ€” Encryption in transit and at rest, MFA, least-privilege access, vulnerability management, change management, secure development lifecycle, incident response, and responsible disclosure programme, as described in the Security Policies and Security & Responsible Disclosure pages.
  • Governance & Ethics โ€” Conflict of Interest, Whistleblower, Anti-Bribery & Anti-Corruption, Code of Ethics, Code of Conduct, Inclusion and Accessibility statements operationalised.

2. Planned

  • SOC 2 Type I โ€” Readiness in progress; report targeted within the next 12 months of the date of this statement.
  • SOC 2 Type II โ€” Following Type I, an observation window will run prior to Type II issuance.
  • ISO/IEC 27001 โ€” ISMS scope, statement of applicability and Annex A controls in development for certification.
  • ISO/IEC 42001 โ€” AI Management System aligned with the existing AI Governance framework; certification pursued in step with ISO 27001.
  • EU AI Act conformity โ€” Where the platform or specific deployments fall within scope obligations of high-risk or general-purpose AI provisions, Prodia will operate the required technical and organisational measures and engage notified bodies as applicable.

3. Under consideration

  • ISO/IEC 27701 (privacy information management).
  • HIPAA-aligned posture for customers handling protected health information.
  • Cloud Security Alliance STAR self-assessment.

4. Reporting and evidence

On execution of a mutual non-disclosure agreement, current customers and qualified prospects may request the current security questionnaire, sub-processor register, SBOM excerpts, penetration-test attestation summaries and policy bundle through trust@prodia.dev.

5. No misrepresentation

Prodia will not represent any planned certification as held until the certificate or report has been formally issued by the relevant accredited body or audit firm.

Prodia Systems Ltd
27 Pembroke Street Upper, Dublin 2, D02 X361, Ireland
Contact: legal@prodia.dev