Trust Center

Start your security review

View & download sensitive information

Ask for information

Overview

Welcome to Discovery Life Sciences's Trust Center. Our commitment to data privacy and security is embedded in every part of our business.
Discovery Life Sciences has successfully completed a SOC 2 Type II audit with no exceptions. Our compliance program is aligned with ISO 27001, SOC 2, and NIST frameworks, reflecting our commitment to the highest standards of information security across our global operations.
The SOC 2 Type II report will be available upon request under NDA. To request access, please submit an inquiry through this Trust Center.
Use this Trust Center to learn about our security posture and request access to our security documentation.

Compliance

SOC 2 Type 2

Risk Profile

Impact LevelSevere

Recovery Time Objective4 hours

Recovery Point Objective3 hours

Product Security

Audit Logging

Data Security

Integrations

Reports

We may provide security-related reports upon request.

Self-Assessments

Discovery Life Sciences actively responds to client and prospect security assessments including SIG, CAIQ, and custom vendor questionnaires. Completed assessments and supporting documentation are made available under a executed NDA. To initiate a request, please submit an inquiry through this Trust Center. Our security team typically responds within 2–3 business days.

Data Security

Access Monitoring

Certificates of Destruction

Data Asset Classification

App Security

We take application security seriously and are putting together a program to monitor internal apps.

AI

We take the usage of AI seriously in our organization and work to ensure security and reliability of the AI.

ESG

We prioritize and take environmental, social, and governance (ESG) considerations seriously in our operations and decision-making processes.

Legal

We take legal matters seriously and we always engage our legal counsel to review all commercial activities. Please contact us if you have any questions.

Data Privacy

Privacy of customer data is top of mind. We follow industry best practices and follow all applicable privacy regulations.

Access Control

Access is tightly monitored and controlled at our company. We are happy to provide more details about our access control practices upon request.

Infrastructure

We take great care to work with best-in-class infrastructure providers that provide secure computing and storage. We are happy to provide more details about our infrastructure upon request.

Endpoint Security

We follow industry best practices for endpoint security. We are happy to provide more details about our endpoint security practices upon request.

Network Security

We protect our corporate network against external & internal threats.

Corporate Security

We implement internal measures and practices to maintain a high standard of security.

Policies

We are currently working with experts to put together our company policies. Please contact us for more details.

Security Grades

SecurityScorecard

Discovery Life Sciences

Black Kite

Discovery Life Sciences

B+

Qualys SSL Labs

dls.com

Incident Response

Designated Response Personnel

Forensic Retainer

Incident Reporting Process

Risk Management

We have a dedicated team that manages security risks. We are happy to provide more details about our risk management practices upon request.

Asset Management

We have strict asset management policies in place to ensure that all assets are accounted for and secure.

BC/DR

We have a business continuity plan in place to ensure that we can continue to operate in the event of a disaster.

Training

We provide security awareness training to all employees to ensure that they are aware of security best practices.

Change Management

We have a change and configuration management process in place to ensure that changes are properly reviewed and approved.

Physical & Environment

We have physical and environmental controls in place to ensure that our data centers are secure and reliable.

Continuous Monitoring

Automated Alert Response

Data Loss Prevention System (DLP)

Event & Audit Log Management

Trust Center Updates

Security Posture Enhancement in Response to Emerging AI Threat Intelligence

Copy link

Compliance

Discovery Life Sciences continuously monitors the evolving threat landscape, including risks introduced by the rapid adoption of AI technologies across the industry.
In response to recently published AI security research — including threat modeling work from leading AI safety organizations — Discovery has taken the following proactive steps to strengthen its security posture:

AI Usage Policy — Formal policy governing approved and prohibited uses of generative AI tools across the organization has been established and communicated to all staff
Data Loss Prevention (DLP) — Controls have been reviewed and updated to detect and prevent sensitive research or client data from being submitted to external AI platforms
Vendor AI Risk Assessment — Third-party vendors leveraging AI in their products or services are now subject to additional security scrutiny during onboarding and annual review
Security Awareness Training — Staff training has been updated to include AI-specific threat scenarios including prompt injection, data leakage via AI tools, and social engineering using AI-generated content
Monitoring & Detection — Microsoft Sentinel rules have been tuned to flag anomalous behavior consistent with AI-assisted attack patterns

Discovery Life Sciences remains committed to transparent, proactive communication regarding our security program. Questions may be directed to our security team via this Trust Center.