Introducing the Trust Signal Directory
A public evidence directory for trust, security, privacy, compliance, and enterprise-readiness signals across SaaS and AI vendors.
A public evidence directory for trust, security, privacy, compliance, and enterprise-readiness signals across SaaS and AI vendors.
I have started a public side project under CodeYourCompliance:
https://signal.codeyourcompliance.com
The Trust Signal Directory tracks public evidence surfaces that appear across SaaS, AI, and B2B software vendors.
Examples include:
Trust Centers
Security pages
Privacy policies
Data Processing Addendums
Subprocessor pages
SOC 2, ISO 27001, HIPAA, GDPR, and related statements
AI data usage, responsible AI, and model safety pages
Enterprise security features such as SSO, SCIM, RBAC, audit logs, and data residency
Security, privacy, compliance, GRC, and legal operations hiring signals
The purpose is not to rank vendors.
The purpose is to observe public evidence surfaces and ask a more specific question:
What might this public change signal about trust maturity, compliance pressure, enterprise readiness, procurement readiness, or vendor review expectations?
A single page change is not proof of buying intent. A Trust Center does not automatically mean a company is looking for a new compliance tool. A privacy policy update may be routine legal maintenance. A SOC 2 page may indicate the company is already past the readiness stage.
That is why the directory is evidence-first and cautious by design.
Each useful signal should eventually answer:
What changed?
Where is the public evidence?
Why might it matter?
What could make it a false positive?
What should be watched next?
The public site will start small.
The first version will focus on methodology, signal taxonomy, sample company profiles, and public examples. More company profiles will be added only after manual review.
The private research layer remains separate. Buyer-specific fit ratings, custom watchlists, recommended GTM actions, and outcome feedback are not published in the public directory.
For now, the goal is simple:
Build a clean public evidence layer for tracking trust and compliance signals, then test whether these signals can become useful GTM intelligence for people selling into compliance, security, privacy, AI governance, vendor risk, and enterprise readiness workflows.
You can view the initial public alpha here: