San Francisco, CA - Aug 04, 2025 - Comp AI, a San Francisco-based startup founded in 2025, announced, that it has secured $2.6 million in a pre-seed funding round to transform enterprise compliance through AI-powered automation. Co-led by OSS Capital and Grand Ventures, with participation from angel investors David Cramer (founder of Sentry) and Ben Tossell (Ben’s Bites), the round will fuel the launch of Comp AI’s AI Agent Studio, expansion of its open-source platform, and team growth. The company’s platform automates compliance for critical frameworks like SOC 2, HIPAA, GDPR, ISO 27001, and over 25 other standards, addressing the inefficiencies of traditional compliance processes.
The $2.6 million pre-seed round, co-led by OSS Capital and Grand Ventures, marks Comp AI’s first major funding milestone. OSS Capital, known for backing open-source startups like ProjectDiscovery, Plane, and Cal.com, brings expertise in disruptive technologies, while Grand Ventures, a supporter of B2B SaaS platforms like Astronomer and Payload, adds strategic depth. Notable angel investors include David Cramer, founder of Sentry, and Ben Tossell, creator of Ben’s Bites. The funds will support:
- AI Agent Studio Launch: Moving from beta to general availability, automating evidence collection, risk assessments, and vendor onboarding.
- Open-Source Platform Expansion: Enabling contributions from security professionals and auditors to enhance control templates and framework mappings.
- Team Expansion: Recruiting talent to scale operations and customer support.
| Funding Round | Amount | Year | Lead Investors | Supporting Investors |
|---|---|---|---|---|
| Pre-Seed | $2.6M | 2025 | OSS Capital, Grand Ventures | David Cramer, Ben Tossell |
Comp AI’s Platform
Comp AI’s AI-powered trust management platform automates up to 90% of compliance tasks, reducing the time and cost of achieving certifications like SOC 2, HIPAA, GDPR, and ISO 27001. Key features include:
- Real-Time Compliance Tracking: Dynamic monitoring of compliance progress.
- Automated Evidence Collection: Streamlined audit preparation through AI-driven evidence gathering.
- Risk Assessment: Proactive identification and mitigation of compliance risks.
- Vendor Management: Centralized management of vendor compliance requirements.
Since emerging from stealth in April 2025, Comp AI has gained significant traction, with early customers saving over 2,500 hours of manual compliance work. The platform’s participation in Vercel’s Spring ’25 OSS initiative and its pre-launch testing program, which attracted over 3,500 companies, demonstrate strong market interest. Comp AI positions itself as “the Vercel of compliance,” offering a developer-friendly, cost-effective alternative to legacy platforms like Drata and Vanta.
Leadership and Expertise
Comp AI was founded by Silicon Valley entrepreneurs Mariano Fuentes, Lewis Carhart, and Claudio Fuentes, who bring firsthand experience with SOC 2 compliance from their previous ventures. Their frustration with manual, costly compliance processes inspired the creation of an AI-driven solution. CEO Lewis Carhart stated, “We’re building a platform that makes compliance accessible and efficient, empowering startups to compete with enterprises without the burden of outdated processes.” The team’s expertise in AI and compliance positions Comp AI to disrupt the $10 billion GRC market.
Industry Impact and Challenges
Compliance frameworks are essential for securing enterprise contracts, but traditional solutions are manual, costly (often $25,000-$100,000 annually), and time-intensive. Comp AI’s platform reduces these barriers, enabling startups and SMEs to achieve enterprise-grade security efficiently. Its open-source approach fosters community collaboration, allowing security professionals to contribute to framework mappings and automation tools, enhancing scalability and adaptability.
Challenges include competition from established GRC platforms like Drata, Vanta, and Secureframe, as well as enterprise concerns about AI-driven compliance reliability and data security. Comp AI addresses these through robust encryption, compliance with global standards, and extensive testing, as evidenced by its early customer success and Vercel partnership. Regulatory acceptance of AI-driven solutions remains a hurdle, but Comp AI’s transparent, community-driven approach builds trust.
Stakeholder Perspectives
Joseph Jacks, Founder of OSS Capital, said, “We have been blown away by Comp AI’s speed of execution and customer obsession. GRC has long been overdue for open-source disruption, and Comp AI is delivering that in spades.” Nathan Owen, General Partner at Grand Ventures, added, “GRC—specifically compliance (SOC 2, ISO 27001, GDPR, etc.)—has needed bold innovation for years, and Comp AI is leading the charge. Their platform isn’t an incremental improvement; it’s a complete reinvention.” These endorsements underscore Comp AI’s potential to redefine compliance automation.
Future Outlook
Comp AI plans to launch its AI Agent Studio in Q4 2025, enhancing automation for compliance tasks. The company’s open-source platform will evolve through community contributions, strengthening its position as a cost-effective alternative to legacy solutions. With a growing team and expanding customer base, Comp AI aims to support 100,000 companies in achieving SOC 2, ISO 27001, and GDPR compliance by 2032, addressing the growing demand for streamlined solutions in a regulated business environment.
