Auricen

About

Auricen captures compliance evidence with a tamper-evident audit trail. Every recorded workflow is cryptographically signed with RSA-SHA256 and hash-chained at the moment of capture so auditors can independently verify that evidence has not been altered, without relying on your word.

How it works
Start a recording session, perform the compliance control in your browser, and stop. Auricen captures a signed evidence record screenshot, metadata, timestamp, and control tag and uploads it to your Auricen workspace. Each record includes a verifiable hash that any auditor can check at app.auricen.com/auditor.

Who it's for
Companies preparing for SOC 2 Type II, ISO 27001, CMMC Level 2, HIPAA, NIST 800-171, DORA, or EU AI Act audits.
Compliance teams collecting evidence for manual controls where system logs are absent or insufficient.
Auditors who need to verify evidence integrity without trusting flat screenshots.

Supported frameworks
SOC 2 · ISO 27001 · HIPAA · CMMC Level 2 · NIST 800-171 · DORA · EU AI Act · PCI DSS · FedRAMP · GDPR · CCPA

Key features
Cryptographic signing — RSA-SHA256 + hash chain on every record
Framework tagging — map evidence directly to controls (e.g. AC.L2-3.1.1, CC6.1)
AI-assisted control mapping — identifies relevant controls as you record
Audit packages — export a signed, verifiable package for your auditor
Auditor portal — auditors verify records independently at app.auricen.com/auditor
Gap analysis — see which controls have evidence and which are open

Requires an Auricen account
Sign up free at app.auricen.com. Pro and Team plans required for AI features. No Anthropic API key needed - AI runs through Auricen's backend.

Privacy
Auricen does not collect browsing history. The extension only activates when you explicitly start a recording session. Screenshots are captured solely for compliance evidence you initiate. Full privacy policy: app.auricen.com/privacy