Inriver is a leading provider of AI-powered Product Information Management (PIM) solutions designed to transform product data into a competitive edge, serving over 1,600 brands, manufacturers, and retailers worldwide.
Inriver prioritizes compliance and independent audits as fundamental pillars of customer trust, aligning with key standards such as ISO/IEC 27001, ISO 27701, SOC 2, NIS2, and GDPR — partnering with A-LIGN and Drata to meet its compliance goals with confidence and efficiency.
The challenge
Inriver understands that offering clear assurance to clients, partners, and stakeholders is essential. By maintaining strict adherence to international standards, securing third-party certifications, and undergoing regular independent audits, Inriver strengthens stakeholder confidence in its platform’s security.
Prior to leveraging A-LIGN’s audit services and Drata’s trust management platform, , Inriver encountered significant inefficiencies. Audit cycles were labor-intensive and manual, requiring weeks of evidence collection via screenshots and emails. Visibility into compliance status was poor, and audit-related costs were high due to consultant reliance and internal resource drain. These efforts often distracted from Inriver’s core focus: product innovation and engineering.
For Inriver, audit reports represent a “trust badge” to clients — demonstrating adherence to industry best practices. A-LIGN’s reports stand out for their rigor, clarity, and dependability, backed by industry credentials and methodical execution
Why A-LIGN
Inriver selected A-LIGN for its deep expertise in compliance frameworks such as ISO 27001, ISO 27701, and SOC 2 and its partnership and familiarity with Drata.
A-LIGN’s collaborative approach streamlined the audit process, making it smoother and more efficient compared to other firms. A-LIGN consolidated Inriver’s SOC 2, ISO 27001, and ISO 27701 audits into a single fieldwork cycle. Their audit harmonization method reused control tests across frameworks, ensuring efficiency and consistency. Drata played a key role by mapping controls across standards and tracking evidence uploads in real time, eliminating redundancy and enhancing coordination.
The engagement with A-LIGN and Drata was marked by professionalism and smooth execution. A-LIGN’s auditors brought domain expertise in SaaS, while the Drata platform provided consistent visibility into project status. A-LIGN focused on refining controls and answering substantive compliance questions, resulting in a high-quality, low-stress audit experience.
“We chose A-LIGN for their unmatched level of expertise and their ability to work within the Drata platform to lead us to meet our key initiatives. A-LIGN’s support makes the audit process a lot smoother and more efficient”
-Ronald Jabangwe, CISO/Head of IT
Results
In an environment where data protection is a competitive differentiator, Inriver’s commitment translates into quicker deal cycles, deeper partnerships, and a market advantage.
Inriver found the expertise of A-LIGN, coupled with the power of Drata, drove impactful results for their organization. Supporting critical frameworks like SOC 2, ISO 27001, ISO 27701, NIS2, and GDPR, the Drata platform enabled real-time monitoring and provided an Audit Hub for seamless auditor access.
A-LIGN’s auditors demonstrated deep familiarity with the Drata platform — offering proactive guidance on evidence uploads, interpreting control mappings, and identifying areas for improvement. A-LIGN’s hands-on approach allows Inriver’s team to gain useful insights to drive and strengthen their world-class compliance program.
Tools like Drata’s Policy Center and Risk Management dashboard — with features such as templates, version control, and a unified risk register — proved even more impactful with A-LIGN’s team helping unlock their full potential. Together, the combined expertise created a more agile, transparent, and scalable compliance program.
“A-LIGN delivers high quality reports because they’ve got the credentials, experience, and a professional approach that backs it all up. Bringing in Drata was a smart move — it let us ditch manual work for smart automation.”
-Ronald Jabangwe, CISO/Head of IT
Inriver’s shift from manual processes to automation with Drata brought a 45% reduction in time spent on compliance, enabling internal teams to focus on strategic, high-value tasks. This improvement enhanced overall audit readiness and created bandwidth for product innovation, delivering new features that better serve customers and drive business growth.
For Inriver, compliance isn’t just about ticking boxes. — it’s about sustained growth through trust. The company’s focus lies in protecting customer data, maintaining transparency through the Trust Center, and driving continuous improvement.
Looking ahead, Inriver is committed to deepening its relationship with A-LIGN and Drata, and strengthening its compliance program as regulatory standards and program priorities continue to evolve.
About Inriver
Inriver is the Product Information Management (PIM) solution that empowers brands, manufacturers, and retailers to take control of the product data current and turn complexity into competitive advantage. Its AI-powered, scalable platform connects seamlessly to upstream systems and downstream channels, enabling continuous optimization of product experiences across every touchpoint. Trusted by more than 1600 global brands, Inriver accelerates time-to-market, enhances customer experience, and fuels profitable growth. For more information, visit www.inriver.com or follow on LinkedIn.
About Drata
Drata is the trust layer between great companies and those they do business with. Over 7,500 organizations globally, including over a third of the Cloud 100, use Drata to automate governance, risk, compliance, and assurance resulting in a strong security posture, streamlined security reviews, lower costs, and less time spent preparing for audits. The company is backed by ICONIQ Growth, Notable Capital, Alkeon Capital, Salesforce Ventures, and other leading investors. For more information, visit drata.com.