Skip to main content
Operayde
Book an executive briefing

Procurement pack

What your legal and security teams receive.

The procurement pack is a packaged bundle of the artefacts corporate diligence typically asks for. Everything is released after a mutual NDA and a scoping call — not self-service. Nothing here is a live download; each item ships as a versioned PDF signed against the same key that signs our audit roots.

Back to the Trust Centre

Contents

  • DPA skeleton

    GDPR / PDPL-aligned data-processing agreement skeleton with Operayde's controller / processor allocation and the standard clauses for sub-processor changes and audit rights.

  • MSA skeleton

    Master services agreement skeleton with the exit clause, wipe certificate, uptime commitments, and support tiers already filled in against the target offer.

  • Sub-processor list

    The full list, plus the shorter public version already on the Trust Centre.

    See the public list

  • Deployment architecture

    Reference architecture for the target deployment — appliance topology, network paths, gateway policy shape, and audit-chain flow.

  • Exit / wipe-certificate explainer

    How termination works end to end: appliance return or on-site wipe, cryptographic wipe certificate, central-plane record purge, and the retention windows that survive termination (audit ledger only).

  • Pen-test summary

    Arriving Q3 2026

    The engagement is scheduled; the summary joins the pack when the report lands. Until then this line is a promise, not an artefact.

  • Software bill of materials

    CycloneDX SBOMs for every service that ships in a release — released with the pack under NDA rather than published, to keep the version surface out of automated scanners.

Request the procurement pack

Reply within one business day; scoping call to size the pack to your diligence stage; NDA signed; pack delivered.