Procurement pack
What your legal and security teams receive.
The procurement pack is a packaged bundle of the artefacts corporate diligence typically asks for. Everything is released after a mutual NDA and a scoping call — not self-service. Nothing here is a live download; each item ships as a versioned PDF signed against the same key that signs our audit roots.
Contents
DPA skeleton
GDPR / PDPL-aligned data-processing agreement skeleton with Operayde's controller / processor allocation and the standard clauses for sub-processor changes and audit rights.
MSA skeleton
Master services agreement skeleton with the exit clause, wipe certificate, uptime commitments, and support tiers already filled in against the target offer.
Sub-processor list
The full list, plus the shorter public version already on the Trust Centre.
Deployment architecture
Reference architecture for the target deployment — appliance topology, network paths, gateway policy shape, and audit-chain flow.
Exit / wipe-certificate explainer
How termination works end to end: appliance return or on-site wipe, cryptographic wipe certificate, central-plane record purge, and the retention windows that survive termination (audit ledger only).
Pen-test summary
Arriving Q3 2026The engagement is scheduled; the summary joins the pack when the report lands. Until then this line is a promise, not an artefact.
Software bill of materials
CycloneDX SBOMs for every service that ships in a release — released with the pack under NDA rather than published, to keep the version surface out of automated scanners.
Request the procurement pack
Reply within one business day; scoping call to size the pack to your diligence stage; NDA signed; pack delivered.