Compliance

Platform Compliance

PrimeContractorOS maintains rigorous security and compliance standards to protect your sensitive contracting data. Our platform is designed to meet the needs of government contractors who handle Controlled Unclassified Information (CUI) and other sensitive but unclassified data.

• SOC 2 Type II compliant infrastructure
• AES-256 encryption at rest
• TLS 1.3 encryption in transit
• US-based data centers only
• Regular third-party security audits
• Role-based access controls with audit logging

Regulatory Framework Support

PrimeContractorOS helps you track and maintain compliance with key federal contracting regulations:

• Federal Acquisition Regulation (FAR) clause tracking
• DFARS supplement compliance for DoD contracts
• Cost Accounting Standards (CAS) support
• Service Contract Act (SCA) wage determination tracking
• Small business subcontracting plan reporting

Data Handling

PrimeContractorOS is designed for managing unclassified contracting data. The platform is not intended for storing classified information (Secret, Top Secret, or SCI). If your contracts involve classified work, use PrimeContractorOS for unclassified administrative and financial management only, and maintain classified information in approved systems.

Questions?

For compliance-related questions or to request our security documentation, contact us at [email protected].