Delve accused of faking compliance certifications
Compliance startup Delve is accused of faking SOC 2, ISO 27001, HIPAA, and GDPR certifications for hundreds of clients, with allegations surfacing on Reddit and Hacker News starting January 8, 2026. As of March 21, 2026, Delve's CEO Karun Kaushik calls the claims "falsified" and from an "AI-generated email," despite leaked reports containing real client signatures. An anonymous investigator, "DeepDelver," published a detailed report on Substack alleging Delve's "US-based auditors" are Indian certification mills using shell companies. Delve, which raised $32 million in Series A funding in July 2025, maintains it is an automation platform, not an auditor, and that licensed auditors issue final reports.
Timeline
Want updates on this thread?
Track this story2026
5 updates
2026
5 updatesDelve's CEO Karun Kaushik has responded to allegations of faking compliance reports, calling the claims "falsified" and from an "AI-generated email," despite leaked reports containing real client signatures. An anonymous investigator, "DeepDelver," published a detailed report on Substack alleging that Delve's "US-based auditors" are actually Indian certification mills using shell companies. Delve maintains they are an automation platform, not an auditor, and that licensed auditors issue final reports.
Compliance startup Delve is accused of faking SOC 2, ISO 27001, HIPAA, and GDPR certifications for hundreds of clients. An investigation revealed systematic fabrication of compliance reports, including pre-written audit conclusions and fabricated security check evidence. The CEO reportedly called the allegations 'falsified claims,' but leaked documents contained real client signatures and confidential data.
via Reddit·Hacker News·Reddit
The allegations against Delve gained further traction on Hacker News, where a thread titled 'Delve AI Audit Fraud' emerged. Participants in the discussion shared detailed analyses and evidence, bringing the accusations to a wider tech audience and significantly increasing public pressure on the company.
Discussions intensified on Reddit with a post titled 'Real or Fake? The Delve scandal or conspiracy deepens,' indicating a rapidly growing awareness and debate surrounding the allegations. The post referenced information circulating about allegedly fake SOC 2 reports and a spreadsheet confirming impacted clients, further fueling public scrutiny.
Initial allegations of fraudulent compliance practices by Delve began to surface on Reddit's r/soc2 subreddit. Users expressed growing skepticism and shared suspicions regarding the legitimacy of Delve's claims, particularly its promise of achieving 'SOC 2 in days,' indicating early public concern.
2025
3 updates
2025
3 updatesIn late 2025, a critical vulnerability was discovered when a publicly accessible Google Spreadsheet was found, containing links to hundreds of confidential draft audit reports from Delve's internal pipeline. This discovery became the initial catalyst for the subsequent widespread fraud allegations against the company, exposing potential irregularities.
Concurrent with its Series A funding announcement, Delve claimed to be serving over 500 companies across various industries. The company marketed its platform as a solution that could help customers achieve compliance rapidly, build robust security, and expedite deal closures, highlighting its rapid growth and market penetration.
Delve announced a substantial Series A funding round, raising $32 million led by Insight Partners, with additional participation from CISOs at Fortune 500 companies. This funding round valued the company at $300 million and was intended to accelerate its AI capabilities, expand its team, and support more compliance frameworks.
2024
2 updates
2024
2 updatesDelve publicly launched its HIPAA compliance as a service on Hacker News, marking one of its first major product offerings. This launch underscored the company's early focus on regulated industries and its ambition to simplify complex compliance frameworks using AI-driven solutions.
In 2024, Delve successfully secured $3.3 million in seed funding. This initial capital provided the necessary resources to develop its AI-native compliance platform, enabling the company to begin building its core technology and expand its foundational team.
2025
Story began · 4 months ago