Compliance used to be the corporate equivalent of flossing. Everyone knows they should do it. Almost no one wants to. Then the audit hits and suddenly the room smells like panic and cold coffee. Enter Complyance, spelled like compliance but built like a machine that refuses to blink.
Complyance just locked in $20M in Series A funding led by GV, with Creandum, HV Capital, Speedinvest, and Everywhere Ventures in the mix. Total capital now stands at $28M. That is not loose change. That is conviction capital aimed squarely at the mess most enterprises politely call GRC.
Congratulations to Richa Kaul, Founder & CEO of Complyance, for turning a category that usually inspires yawns into something investors are lining up for. And respect to Cale Pissarra, Director of Marketing at Complyance, who now gets to tell a much bigger story with a lot more jet fuel behind it.
Complyance emerged from stealth in 2023 and launched its first product in late 2024. No grandstanding. Just building. Today the New York based company serves complex enterprises, including CVS Health, Dropbox, Major League Soccer, and Wellstar Health System. That is not a beta list. That is a pressure test.
The pitch is simple but not simplistic. GRC teams are buried in manual work, scattered evidence, and frameworks stacked like Jenga blocks. Complyance built an AI native platform with 16 purpose built agents that operate inside real workflows. These agents prep evidence, surface risk, evaluate vendors, and keep humans in the loop with auditable outputs. The result is a reported 70% reduction in manual GRC work. Read that again. 70%. In a market projected to grow from roughly $20.56B in 2025 to about $39.99B by 2030.
This is not about sprinkling AI on a dashboard and calling it transformation. This is agentic AI wired directly into controls monitoring, risk management, audit readiness, vendor onboarding, and policy lifecycle. More than 100 frameworks supported. HIPAA. ISO 27001. SOC 2. PCI DSS. NIST CSF. CMMC. The alphabet soup finally gets a system that can actually read.
GV did not lead this round for sport. Luna Schmid, Partner at GV, pointed to the scale and the depth of the problem. Enterprises are drowning in obligations while the threat landscape keeps mutating. Legacy GRC tools were built for a slower internet. Complyance is building for the one we actually live in.
The business takeaway is sharp. If you are going after a massive market, do not nibble at the edges. Go where the pain is highest and the spreadsheets are ugliest. Build something native to the problem, not bolted on. Land real customers who cannot afford failure. Then show the math.
