============================================================ VENDOR COMPLIANCE REPORT ============================================================ Generated: 2026-03-23 Source: TrustCompliance.xyz ------------------------------------------------------------ COMPANY INFORMATION ------------------------------------------------------------ Company Name: Unbound Legal Name: Web Sentry Inc Website: https://unboundsecurity.ai Slug: unbound ------------------------------------------------------------ DATABASE STATUS ------------------------------------------------------------ Status: FOUND in leaked database ------------------------------------------------------------ RISK SCORE ------------------------------------------------------------ Score: 40 / 100 Grade: D Summary: High risk. Significant audit integrity concerns detected. Recommend obtaining an independent compliance assessment before vendor engagement. Dimensions: Audit Integrity: 15/100 (35% weight) [NEGATIVE] Company found in leaked database of template-based audit reports [NEGATIVE] Type 2 reports require observation period testing - template usage is more concerning here [NEGATIVE] Audit performed by firm flagged for systematic template reuse Compliance Coverage: 35/100 (25% weight) [NEUTRAL] SOC 2 report found, from a flagged source [NEUTRAL] Reports dated within Jan-Dec 2025 observation window Infrastructure & Security: 80/100 (20% weight) [POSITIVE] Company maintains a public website [POSITIVE] Website configured with HTTPS [POSITIVE] Hosted on AWS - enterprise-grade infrastructure with native security controls Transparency & Governance: 50/100 (20% weight) [POSITIVE] Registered as "Web Sentry Inc" [NEUTRAL] System description found in audit reports [NEGATIVE] Zero exceptions reported across all audit periods - statistically improbable, suggests inadequate testing ------------------------------------------------------------ REPORTS FOUND ------------------------------------------------------------ Total Reports: 1 Report Types: SOC 2 Type 2 Report 1: Type: SOC 2 Type 2 Observation Period: August 1, 2025 - November 1, 2025 ------------------------------------------------------------ INFRASTRUCTURE PROVIDERS ------------------------------------------------------------ - AWS ------------------------------------------------------------ RECOMMENDATIONS ------------------------------------------------------------ - Unbound was found in the leaked Delve audit database. - Their SOC 2 / ISO 27001 reports may have been template-based. - Request a new audit from a verified, independent CPA firm. - Ask the vendor about their awareness of the Delve situation. - Consider requiring auditor rotation for ongoing engagements. - Review the vendor's actual security controls independently. ------------------------------------------------------------ DISCLAIMER ------------------------------------------------------------ This report is generated by TrustCompliance.xyz and is based on publicly leaked audit data. It is provided for informational purposes only and does not constitute legal, financial, or professional advice. Inclusion in the leaked database does not constitute an accusation of wrongdoing by the listed company. Many companies may have been unaware of Delve's practices. ============================================================ Report generated on 2026-03-23 by TrustCompliance.xyz ============================================================