As regulatory frameworks multiply and enterprise risk becomes harder to manage, Vendict is betting that compliance’s biggest problem isn’t slowness; it’s trust. The AI-native platform just raised a $10 million Series A round to expand its hallucination-free GRC (Governance, Risk, and Compliance) solution, aiming to transform how enterprises manage risk, respond to assessments, and build credibility with every audit.
The round was led by Moneta VC and JAL Ventures, with strong participation from existing investors, including NFX, Cardumen Capital, Disruptive AI, and Cyber Club London. Some backers went beyond their pro-rata allocations, a rare show of conviction in today’s investment climate.
“The compliance space is undergoing a generational shift, and Vendict is perfectly positioned to lead it,” said Adoram Gaash, Co-Founder & Managing Partner at Moneta VC.
AI-Native Design: Built for Adaptation
What sets Vendict apart is architecture. While most platforms are patching AI into legacy systems, Vendict was engineered with intelligence at its core. That difference allows it to continually learn from users, generate explainable outputs, and evolve with each compliance cycle.
“Our architecture doesn’t just consume data; it learns from user interaction patterns, approval workflows, and decision boundaries in real time,” said Michael Keslassy, Vendict’s CTO.
“While competitors try to retrofit AI into legacy systems, Vendict is built from the ground up with intelligence at the core,” added Gonzalo Martínez de Azagra, General Partner at Cardumen Capital. “That native advantage shows up in their speed, accuracy, and customer wins.”
Reducing the Compliance Burden
GRC teams often spend days responding to repetitive questionnaires, aligning internal controls with external frameworks, and preparing for audits. Vendict cuts that work down to minutes—without compromising rigor.
“Compliance shouldn’t be spending their time copy-pasting across spreadsheets,” said Udi Cohen, Vendict Co-founder and CEO. “They should be steering strategy, managing risk, and earning trust.”
Vendict supports frameworks like SOC 2, ISO 27001, GDPR, DORA, and ESG, offering traceable, source-backed answers to audits, assessments, and due diligence requests.
“We built our platform on language models, knowledge graphs, and continuous feedback loops so it doesn’t just generate answers but also understands context, explains its reasoning, and delivers results executives can trust,” Cohen added.
Trusted by Teams Who Need Precision
For security-conscious enterprises like Orca Security, the platform’s real-world value is clear.
“Vendict’s automation eliminated the manual work involved in responding to these lengthy questionnaires,” said Raul Zayat Galante, CISO at Orca Security. “The time savings were remarkable—we could focus more on security and less on paperwork.”
Network Effect in Action
With over 100 customers and growing, Vendict is building a compliance ecosystem where every user interaction strengthens the platform’s intelligence and accuracy.
“As more tech buyers and tech vendors use Vendict, both sides benefit,” said Gigi Levy-Weiss, General Partner at NFX. “Every interaction strengthens the platform, making it smarter, faster, and more trusted across the ecosystem.”
A Strategic Shift That Is More Than Just Speed
The GRC platform market is expected to grow by more than $44 billion over the next four years. However, according to Cohen, this is about elevating the role of compliance altogether. “They should be steering strategy, managing risk, and earning trust,” he said. “That’s what Vendict enables.”
With explainability, traceability, and adaptability at its core, Vendict is giving compliance a seat at the leadership table.
