Import your vendors in bulk using a CSV file instead of adding them one by one. Quickly populate and maintain your vendor list while reducing manual work and setup time.

Connect Clerk to automatically collect identity provider evidence, including user access lists, admin access, SSO application access, and MFA configuration. This strengthens visibility into identity controls while reducing manual evidence collection.

The GovRAMP framework is now available in Scytale, providing a standardized risk and authorization approach for cloud service providers working with state and local governments. It helps streamline security assessments and align with public sector requirements.

You can now manage a set of fixed, common questions and answers in your Trust Center. This dedicated FAQ section helps prospects quickly find key information and builds trust during the review process.

Gap Analysis is now built into the onboarding experience, automatically verifying that essential configurations and integrations are in place before evidence collection begins. This ensures teams enter the audit process fully prepared, reducing last-minute gaps and strengthening audit readiness from day one.

Scytale now integrates with Render to automatically collect access control evidence, including user access lists and MFA configuration.

The COPPA framework is now available in Scytale, providing a structured, ready-to-use approach to help organizations comply with the Children’s Online Privacy Protection Act. It guides teams in implementing the necessary privacy controls and safeguards when handling children’s data.

Introducing our AI-driven onboarding experience, designed to change the way you get started in Scytale. Personalized guidance and real-time checklists help teams quickly understand the platform, navigate with confidence, and move faster toward audit readiness.

Easily add multiple risks to your risk register at once, saving time and reducing manual data entry. This makes it faster to populate and maintain an up-to-date risk list, especially when migrating data or managing large risk inventories.

A new centralized view of your risk landscape. Visual summaries help teams prioritize risks, track approval progress, and focus on timely mitigation.

You can now add additional users to ITGC controls with read or write permissions. This makes it easier for the right stakeholders to collaborate, review, and contribute throughout the audit process - while keeping ownership clear and unchanged.

Overcome blockers caused by missing or on-prem integrations with custom-built connections, giving teams the flexibility to manage part of their automation independently without compromising security.

Sync policies from Confluence directly into Scytale’s Policy Center, with automatic updates and seamless evidence mapping.

Automatically sync employee lists, new hires, and terminations into Scytale’s People module.

We’ve added a new GDPR training course featuring short videos, quizzes, and reviewable answers to help teams understand key privacy principles and support ongoing compliance with EU regulations.

We now support POPIA with a complete, mappable framework that outlines all requirements and controls needed to comply with South Africa’s data protection regulation.

A full, ready-to-use framework that includes all requirements, mapped controls, and tasks to help companies meet the latest Israeli PPL 13th Amendment obligations.

No more waiting for answers - Scy is your built-in assistant in Scytale, ready to answer your questions and guide you. Whether you're figuring out how to connect an integration, navigate the platform, or understand specific compliance actions, Scy delivers instant, tailored answers to help you move faster and stay confident in your work.

We’ve revolutionized the way you fix Monitoring issues in the Control Center. With AI Remediation, you get instant, step-by-step guidance - generated specifically for your environment and the issue you’re facing. Follow it's clear instructions and resolve issues in minutes.

Stay on top of what you need to do in Scytale with real-time alerts delivered automatically to Slack. Get notified about comments you’ve been tagged in, failing tests, integration connection errors, and open items from auditors.

Connect Scytale with Heroku to monitor and manage your cloud-hosted apps with ease. This integration helps streamline compliance by pulling in relevant infrastructure data - no manual work required.

Say goodbye to copy-pasting and hours of manual work!

Introducing Scytale’s AI-powered questionnaire generator. Just upload your security questionnaire, and AI will instantly generate tailored answers—powered by your data in Scytale, including previous questionnaires and any other resources you’ve shared. Respond faster, smarter, and with total confidence.

Our new RBAC feature gives you precise control over who can access what in your workspace. Assign tailored roles like Collaborator, who can only view and edit items they’re assigned to, or Auditor, now limited to specific audits—ensuring everyone has just the right level of access.

Sync policies from Google Drive, Confluence, or SharePoint directly into Scytale’s Policy Center. Any changes made to the original file will automatically update in Scytale, and the policy will be automatically added as evidence to any connected Monitorings—no manual work needed.

You can now connect your SharePoint account to sync policies directly into the Policy Center or upload evidence files straight to the Control Center—no downloads or manual uploads needed.

Connect Scytale with Opsgenie to streamline incident response. This integration ensures alerts from your monitoring tools reach the right teams instantly—helping DevOps and IT respond faster to critical issues.

Stay aligned with the European Union's AI regulations. Scytale now provides a foundational framework to help you assess, map, and manage your AI systems in line with the EU AI Act. From risk classification to compliance documentation, this feature supports early preparation for upcoming regulatory requirements.

Stay ahead of audits—no more manual follow-ups. Automated ITGC controls keep everything running smoothly, fully tracked, and always audit-ready. Cut the busywork, reduce risk, and prove compliance with confidence.

With one click, Scytale Automation instantly populates your risk register—linking each risk to the right controls, assigning scores, and completing hours of manual assessment in seconds—while you stay in control to review and edit every detail.

We have enhanced the Trust Center to include tabbed navigation, full control descriptions, custom Sub-Processors, and a Security Updates section for streamlined stakeholder communication.

Automatically collect vulnerability data from Microsoft Defender for Cloud to monitor scan configurations and track critical issue resolution.

Strengthen business continuity with our ISO 22301:2019 framework—resilience-focused controls, automated evidence mapping, and simplified audit readiness.

Boost cybersecurity defenses with our ISO 27032:2023 framework—threat-specific controls, automated tracking, and clear audit alignment.

Enhance your cyber risk management with our NIST CSF 2.0 framework—flexible controls, continuous evidence collection, and streamlined compliance oversight.

Introducing the new Integrations screen:

Streamline evidence collection with our new Confluence integration—add any page URL and Scytale converts the page (and its attachments) to a PDF, uploads it to the Control Center as evidence, and keeps it refreshed and synced daily.

Protect cloud-hosted personal data faster with our ISO/IEC 27018:2019 framework—privacy-focused controls, automated evidence mapping, and clear audit tracking.

Secure health-information systems efficiently with our ISO 27799:2016 framework—health-data controls, automated evidence collection, and smoother audit prep.

Experience your Trust Center exactly as visitors will, play around with it, save multiple edits, and publish only when you’re ready.

Automatically fetch user lists and roles in the User Access screen—making reviews effortless, with more automated tests rolling out as customers request them.

Streamline access to Scytale with Microsoft SSO, offering seamless integration and simplified user management for your company.

Automate access across multiple applications with a single OneLogin credential, enhancing both security and compliance effortlessly.

Automate the fetching of user lists and roles, simplifying user access reviews and improving efficiency.

We've introduced the 'Not Started' status for tasks that don't have evidence yet and don't have urgent due dates, ensuring you never miss any pending requirements.

Adopt our newly supported ISO 9001:2015 framework to elevate quality management, enhance performance, and meet customer expectations.

Enhance cloud security by integrating Wiz for real-time monitoring and remediation of misconfigurations across your environments. Learn more

Easily create your own Trust Center with Scytale. Our automated data pre-filling saves time and streamlines your setup process. Learn more

Admins can efficiently manage document access requests, with automatic email notifications sent directly to requesters.

Navigate through Scytale with ease using our newly redesigned menu. Experience smoother, more intuitive navigation that enhances your overall user interaction.

Step into the Control Center, your essential hub for managing compliance tasks. Previously known as 'Monitoring', this updated interface streamlines your compliance activities with smart cross-mapping, saving you time and simplifying the process.

Automatically collect evidence by syncing with Google Drive. This feature makes it easy to keep track of your compliance documents without manual effort, giving you more time to focus on other important tasks.

Discover the power of simplicity with our new Dashboard, expertly crafted to streamline your workflow. Effortlessly navigate through your essential tasks, ensuring a smoother, more effective management process.

Stay on top of your compliance progress with a monthly report delivered straight to your inbox, summarizing key metrics and updates in one place.

Say goodbye to manual back-and-forth with testers! Our streamlined Penetration Testing Interface revolutionizes how you manage tests, from scoping to tracking findings—all in one centralized platform.

Bring order to your workflows with the Notion integration. Effortlessly manage support tasks and streamline organization with this powerful connection. Learn more

Simplify HR and compliance management by seamlessly syncing employee data with Personio. Stay organized, efficient, and compliant with ease. Learn more

All frameworks now support multiple entities within the same company, allowing for entity-specific tracking (e.g., products in SOC 2 compliance).

Access support and help resources with our redesigned, user-friendly interface for a more seamless experience.

Stay up-to-date with the latest HIPAA standards, now available in Scytale.

The ISO 42001 framework is live, enabling streamlined management of these compliance requirements.

Connect with KnowBe4 to enhance security awareness and training.

Integrate with ServiceNow for smoother IT and service management processes.

Integrate with SonarCloud to manage code quality and security directly in Scytale.

Collect and manage evidence directly within Risks, streamlining risk documentation and compliance.

Create and store evidence in Vendors, enhancing visibility into vendor-related risks.

Now you can edit regions and connection names in your AWS integrations for more flexible configuration.

Users can now maintain continuous access to policies for easy reference.

Enable commenting within the policy editor to facilitate collaboration and feedback.

Simplify identity and access management with our new AWS IAM integration.

Integrate with Microsoft Defender for advanced endpoint security management.

Connect with Notion to streamline evidence and information management across platforms.

Create and manage Jira tickets directly within Scytale. This feature offers seamless two-way syncing, making task tracking more efficient. Learn More

Automate employee policy sign-offs and training completions, simplifying the process and enhancing tracking for compliance requirements. Learn More

Access specialized training designed to help your organization meet PCI compliance standards.

Add your company logo, choose fonts and sizes, and customize headers and footers to give your policies a professional, branded appearance.

Implement and manage NIS 2 compliance standards directly in Scytale.

Connect Scytale with Zoho Desk for streamlined support and ticketing management. Learn more