EvidenceDock

EvidenceDock is a web app (with optional lightweight desktop agent) that continuously collects, timestamps, and organizes compliance evidence for SOC 2, ISO 27001, and HIPAA. Instead of chasing screenshots and Slack threads every quarter, it pulls immutable proof from your cloud stack (AWS, Okta, GitHub, Google Workspace) and maps it to specific controls. It flags missing evidence, stale policies, and access anomalies, then generates an auditor-ready evidence package with clear provenance. This is a combination traditional + AI app: traditional connectors and workflows do the heavy lifting, while AI helps classify artifacts, detect gaps, and draft concise narratives for each control. It’s realistic because it doesn’t promise “one-click compliance”; it reduces the most hated work—evidence wrangling—while keeping humans in the loop for approvals and exceptions.