Loading organizations...
Hicomply provides a SaaS platform for building, automating, and managing information security management systems (ISMS), based in Durham, County Durham, United Kingdom. The company's technology helps businesses achieve compliance with critical standards like ISO 27001, SOC 2, and GDPR faster and more efficiently by replacing outdated, manual tools. Leveraging AI and machine learning, the platform automates complex compliance processes, aiming to reduce costs and improve security posture for a global clientele spanning startups to enterprises. Hicomply has secured a total of $4.92 million in funding, with its most recent growth equity round closing approximately four years prior. The company serves diverse sectors, including healthcare, property, and construction, assisting organizations in navigating the complexities of information security. Hicomply was founded in 2019 by Ed Bartlett, Nick Graham, and Michael Norden, with Mark Edgeworth leading as CEO.
Hicomply has raised $4.8M across 2 funding rounds.
Hicomply has raised $4.8M in total across 2 funding rounds.
Hicomply has raised $4.8M in total across 2 funding rounds.
Hicomply's investors include Business Growth Fund, Clean Growth Fund.
Hicomply has raised $4.8M across 2 funding rounds. Most recently, it raised $4.0M Seed in September 2021.
| Date | Round | Lead Investors | Other Investors | Status |
|---|---|---|---|---|
| Sep 1, 2021 | $4M Seed | — | Business Growth Fund | Announced |
| Jan 1, 2021 | $820K Seed | — | Clean Growth Fund | Announced |
# Hicomply: Simplifying Compliance Through Automation
Hicomply is an Information Security Management System (ISMS) software platform that automates compliance management for organizations across all sizes.[1][2] The company helps businesses build, maintain, and demonstrate compliance with regulatory frameworks like ISO 27001, SOC 2, GDPR, and NIST standards—eliminating the manual, spreadsheet-driven processes that traditionally bog down security and compliance teams.[3][4]
The platform serves a broad market: startups, mid-market companies, and enterprises across sectors including fintech, healthtech, and SaaS.[1][2] By automating evidence collection, policy management, risk assessment, and audit preparation, Hicomply addresses a fundamental pain point in the compliance landscape: the gap between organizations that need robust security certifications to access markets and those lacking the resources or expertise to achieve them efficiently.[3]
Hicomply was founded in 2019 by serial entrepreneurs Nick Graham and Ed Bartlett, and is based in Durham, England.[1] The company emerged from a clear market observation—too many businesses are held back by outdated compliance systems and the complexity of managing multiple certification frameworks simultaneously.[3] Rather than building yet another point solution, the founders created a unified platform designed to level the playing field, enabling smaller organizations to compete on security posture with larger enterprises.[3]
The company has gained traction in a competitive GRC (Governance, Risk, and Compliance) space, with its platform now serving organizations worldwide and earning recognition for its user-friendly approach and high audit success rates.[2][4]
Hicomply operates within the rapidly expanding compliance automation sector, where regulatory pressure and data privacy concerns are forcing organizations to professionalize their security practices. The timing is critical: as regulations like GDPR, SOC 2, and emerging frameworks (DORA for financial services) proliferate globally, compliance has shifted from a periodic checkbox exercise to a continuous operational requirement.
The company competes in a crowded but growing market alongside platforms like Vanta, Scrut, and Thoropass—all targeting the same fundamental shift toward automated, cloud-native compliance.[1] What distinguishes this category is that compliance automation has become table stakes for SaaS companies seeking enterprise customers, making Hicomply's platform increasingly essential infrastructure rather than a nice-to-have tool.
The broader trend Hicomply rides is the democratization of enterprise-grade security. Historically, only well-resourced organizations could afford dedicated compliance teams. Automation platforms are collapsing that cost structure, allowing smaller companies to achieve certifications that unlock market access—particularly critical in regulated industries like fintech and healthtech.
Hicomply is well-positioned in a market where compliance automation is transitioning from emerging category to standard practice. As regulatory complexity increases and organizations face mounting pressure to demonstrate trustworthiness to customers and partners, demand for platforms that reduce compliance friction will only intensify.
The company's next phase likely involves deepening integrations with the broader security stack (SIEM, vulnerability management, identity platforms) and expanding internationally—particularly into regulated markets where compliance is a hard requirement for market entry. The founders' background as serial entrepreneurs suggests they understand scaling dynamics, and the platform's focus on automation gives them natural leverage to expand upmarket into enterprise accounts while maintaining accessibility for startups.
In a landscape where trust and security have become competitive advantages, Hicomply's mission to remove barriers to compliance certification positions it as infrastructure for the modern, globally-distributed organization.
