Trust
How Oryn protects your firm's data.
The single front door for firm administrators, general counsel, and security teams who need to evaluate Oryn during procurement or audit. Each link below is the canonical, current version.
Subprocessors The third-party service providers that handle data on Oryn's behalf, with each vendor's purpose, region, DPA link, and sub-processor disclosure. Updated whenever the inventory changes. Data Processing Addendum The contract that governs how Oryn processes Personal Data on behalf of Customer firms. Roles, security measures, breach notification, deletion timelines, international-transfer mechanisms. Privacy Policy What information Oryn collects from firm users and how it is used, stored, and shared. Terms of Service The agreement under which Customer firms use Oryn. Acceptable Use What Customer firms may and may not use the platform for. Security overview Oryn's security architecture: identity, encryption-at-rest and in-transit, audit logging, segregation, and how each connects to applicable controls. Live system status Real-time platform liveness — API, database, and infrastructure health. The R-7 single-region disclosure lives here. Refreshes every 30 seconds. Operational trust metrics Live support-pipeline performance — tickets, median first-response time, SLA breach rate, active beta users. The numbers we hold ourselves to during the Oryn beta. Incident archive Resolved-incident postmortems. What happened, what we changed, and what we are doing differently — published within 5 business days of resolution per the SLA.