Trust center

The trust center is a public, read-only page you can share with prospects and customers to show your compliance posture: active certifications, the standards you follow, program numbers, and policy titles. Visitors need no CompStack account. The page lives at /trust/<token>, where the token is an unguessable link only you hand out. You edit and publish it from Settings.

Before you start

Set up the trust profile

  1. Go to Settings > General and scroll to the Trust center section. The card is titled Public trust page.
  2. The profile is created automatically the first time you open it, as an unpublished draft with a fresh link.
  3. Fill:
    • Display name: defaults to your organization name if left empty.
    • Tagline: one line about your security and quality posture.
    • Security contact email, for example security@yourcompany.com.
  4. Under Sections shown on the public page, toggle what visitors see:
    • Certifications (on by default): a table of your active certification cycles with Standard(s), Certificate no., Certification body, and Valid until.
    • Compliance programs (on by default): chips with the names of standards your organization has adopted.
    • Control stats (on by default): three counters: Controls in place, Audits completed, Corrective actions closed.
    • Policy titles (off by default): titles and codes of policy documents whose current version is published. Opt in deliberately; this reveals your policy list.
  5. Click Save trust profile. You should see "Trust profile saved."

Add custom sections

Custom sections are free-text blocks shown at the bottom of the public page, for topics like data residency or subprocessors.

  1. In the Custom sections area, click Add section.
  2. Fill Section title (for example Data residency) and Body. The body is shown verbatim on the public page.
  3. Add more sections as needed. Remove one with the X icon on its row.
  4. Click Save trust profile. Sections where both title and body are empty are dropped on save.

Publish and share the page

  1. Flip the toggle at the top of the card from Draft to Published. Anyone with the link can now view the page.
  2. The share link is shown in the box below the toggle, in the form https://<your app>/trust/<token>.
  3. Click Copy to copy it ("Trust page link copied."), or Preview to open it in a new tab.

Flip the toggle back to Draft to unpublish. The link then shows the "This trust page is unavailable" screen instead of your data.

Rotate the link

If the link leaked or you want to cut off everyone who has it:

  1. Click Regenerate link.
  2. Confirm Regenerate in the dialog. The warning is real: the current link stops working immediately, and anyone you already shared it with needs the new one.

The old URL now shows the same "unavailable" screen as a wrong guess, so it leaks nothing.

What visitors see

The public page shows, top to bottom: a "Trust Center" header with your display name, tagline, and security contact; the Certifications table; Compliance programs chips; "Program at a glance" stat tiles; "Published policies"; your custom sections; and a "Powered by CompStack" footer. Only the sections you toggled on appear. All numbers are computed live at view time, so the page never goes stale.

Try it

If something goes wrong

← Back to CompStack