As enterprises drown in security questionnaires, evolving regulations, and third-party risk, Vendict is offering something GRC leaders have been waiting for: not just automation, but trust. The company today announced a $10 million Series A funding round to expand its AI-native compliance platform, with new capital from Moneta VC and JAL Ventures, plus returning support from NFX, Cardumen Capital, Disruptive AI, and Cyber Club London.
“The compliance space is undergoing a generational shift, and Vendict is perfectly positioned to lead it,” said Adoram Gaash, Co-Founder & Managing Partner at Moneta VC.
AI-Native from Day One, and It Shows
While most tools in the GRC space are scrambling to layer AI on top of legacy systems, Vendict is among the rare few that have built it into their DNA. This AI-native design enables real-time learning, contextual understanding, and decision-grade output.
“Our architecture doesn’t just consume data; it learns from user interaction patterns, approval workflows, and decision boundaries in real time,” said Michael Keslassy, Vendict’s CTO. “This creates a self-reinforcing system that becomes more precise and context-aware with every compliance cycle.”
“While competitors try to retrofit AI into legacy systems, Vendict is built from the ground up with intelligence at the core,” added Gonzalo Martínez de Azagra, General Partner at Cardumen Capital. “That native advantage shows up in their speed, accuracy, and customer wins.”
Eliminating the Manual Grind
Vendict’s platform automates tedious tasks like responding to questionnaires, performing gap analyses across frameworks like SOC 2 and GDPR, and evaluating third-party risk without sacrificing explainability or accuracy.
“Compliance shouldn’t be spending their time copy-pasting across spreadsheets,” said Udi Cohen, Vendict Co-founder and CEO. “They should be steering strategy, managing risk, and earning trust.”
For customers like Orca Security, the impact is tangible.
“Vendict’s automation eliminated the manual work involved in responding to these lengthy questionnaires,” said Raul Zayat Galante, CISO at Orca. “The time savings were remarkable. We could focus more on security and less on paperwork.”
Creating a Network Effect in GRC
More than 100 companies have adopted Vendict in under three years, many of them moving away from clunky manual processes. As usage spreads, the platform becomes smarter.
“As more tech buyers and tech vendors use Vendict, both sides benefit,” said Gigi Levy-Weiss, General Partner at NFX. “Buyers get faster, more accurate risk assessments, while vendors save time by reusing and refining their responses.”
This compounding value is part of Vendict’s long-term vision: not just to automate compliance but to build a trust engine for the ecosystem.
Redefining What GRC Can Be
With GRC workloads ballooning and AI skepticism still high, Vendict stands out by marrying speed with transparency.
“We built our platform on language models, knowledge graphs, and continuous feedback loops so it doesn’t just generate answers but also understands context, explains its reasoning, and delivers results executives can trust,” said Cohen.
In a high-stakes environment where compliance can’t afford shortcuts, Vendict isn’t just keeping up. It’s setting the pace.
