Branded portal
Your logo, your colours, your domain. A public trust centre your customers reach without a login or an NDA.
The Trust Layer · Trust Centre
Stop replying. Show your security once.
Part of The Trust Layer — RiskXchange's shared trust backbone, already monitoring 5M+ companies. A branded trust centre that answers your customers' security questions before they ask, auto-populated by ARIA from the evidence you already have and kept live by a daily posture score from REX.
The problem
Questionnaire fatigue is everyone's tax.
Every customer wants to assess you. Every assessment is a slightly different spreadsheet asking the same questions. The answers all live in the same SOC 2 and the same set of policies — but somebody on your team has to copy and paste them into yet another grid.
A trust centre is the obvious answer. The reason most never get built is that keeping the content current is a job nobody owns. ARIA owns it.
47
Questionnaires per security team per year
~40 hrs
Average time to complete one full questionnaire
70%+
Of questions are repeated across customers
What you get
One portal. Everything customers ask for.
Built on the same evidence framework — the 157 Universal Controls — that powers assessments across the RX platform. Whatever you upload once is the answer for every customer that asks.
Auto-populated answers
ARIA reads your SOC 2, ISO 27001, policies and prior questionnaires, and answers the standard questions before customers ask.
Certificates & policies
Versioned, dated, downloadable. Customers self-serve the evidence pack instead of emailing your security team for it.
Live security score
Your outside-in posture, scored daily by REX. The same number your customers see in their RX dashboard — straight from the platform.
Custom NDA flow
Gate sensitive evidence behind a click-through NDA. Customers sign once and get the full pack — no back-and-forth with legal.
Shareable transparency reports
Incident reports, sub-processor lists, control mappings. Updated centrally, distributed automatically.
Powered by
ARIA reads the evidence so customers don't have to.
ARIA is the Assessment & Risk Intelligence agent in The Agency. She owns document and questionnaire intelligence end-to-end — and the trust centre is what that intelligence looks like turned outward.
ARIA
Assessment & Risk Intelligence Agent
Reads documents, classifies them against the 157 Universal Controls, scores completed responses and pre-populates the next questionnaire from the last one. The same intelligence powers your trust centre.
Document Classifier
Categorises uploaded evidence and routes it to the right control mapping.
Trust Centre Parser
The same engine that reads other vendors' trust centres for your assessments — turned around to populate yours.
Questionnaire Pre-Populator
Auto-fills standard questions from your evidence so customers see answers, not blanks.
Response Validator
Cross-checks your answers against external scan data so what you publish stays defensible.
How it works
Three steps. Then it runs itself.
01
Upload once
Drop in your SOC 2, ISO 27001, policies and prior questionnaire responses. ARIA classifies and structures everything against the 157 Universal Controls.
02
We pre-fill the portal
Auto-populated answers, control mappings, evidence packs, and a live posture score from REX. Your branding goes on top.
03
Your customers self-serve
Send the trust centre link instead of a 400-question spreadsheet. Customers find what they need, sign the NDA where required, and stop emailing your security team.
Get your trust centre this week.
Book a 30-minute demo and we'll have ARIA pre-populate your portal from the evidence you already have. You walk away with a live trust centre URL — branded, published, and ready to share with the customer asking right now.