Introduction

Assumetr is a compliance evidence platform for web applications.

Rather than relying on manual screenshots or "trust us" security questionnaires, Assumetr continuously monitors your live web telemetry and generates cryptographically signed evidence packets.

What does it solve?

If you run a regulated SaaS application (Healthtech, Fintech, etc.), you are required by frameworks like SOC 2, HIPAA, and GDPR to maintain strict control over your data. But proving what you collect on the frontend—and where it goes—is notoriously difficult.

Assumetr solves this by acting as a verifiable intermediary:

1. You install the Assumetr snippet on your frontend.
2. You configure Privacy Controls in the dashboard (e.g., hash IPs, drop URLs).
3. Assumetr processes the data, strictly enforcing your controls, and delivers it to your analytics tools (PostHog, Segment, etc.).
4. Assumetr generates Signed Evidence, producing an immutable record of your configuration, your data schema, and a log of every destination your data was sent to.

Next Steps

• Check out the Quickstart Guide to install the tracking snippet.
• Learn how Privacy Controls affect your compliance posture.
• See how our evidence maps directly to SOC 2 Criteria.