Drata is a continuous security and compliance automation platform supporting SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, and more, with policies, evidence, and trust center. The provider exposes a public REST API (v2), a Custom Connections framework, the acquired SafeBase Trust API, and an MCP server for AI agents.
URL: Visit APIs.json URL
- x-type: company
- GRC, Compliance, SOC 2, ISO 27001, Security
- Drata Public API v2 — REST API for controls, frameworks, evidence, personnel, assets, and tests. Base URL:
https://public-api.drata.com. Docs: https://developers.drata.com/openapi/reference/v2/overview/ - Drata Custom Connections API — automate evidence collection from custom systems.
- SafeBase Trust API — programmatic access to SafeBase trust centers and questionnaires (acquired by Drata).
- Drata MCP Server — Model Context Protocol server for AI-native trust management.
- Created: 2026-05-08
- Modified: 2026-05-08
- Website
- Developer Portal
- Plans — public pricing not posted; contact sales (reconciled: false).
- RateLimits — limits not publicly published (reconciled: false).
- FinOps — FOCUS-aligned subscription model (reconciled: false).
FN: Kin Lane
Email: kin@apievangelist.com