TrustKit.co
Aikido Security icon

Aikido Security

Belgian AI-powered application security platform for development teams

by Aikido SecurityBEBelgium🌐AWS (code not retained after scanning)
Compliance & Governance
TrustKit Score84%Strong

About Aikido Security

Aikido Security was founded in 2022 in Ghent, Belgium, and has rapidly grown into one of Europe's most prominent security startups. The platform provides an all-in-one application security solution that scans source code, containers, infrastructure-as-code, and cloud configurations for vulnerabilities—using AI to reduce noise and prioritise the most critical findings. The platform is designed for development teams and DevSecOps workflows: it integrates directly into CI/CD pipelines, code repositories (GitHub, GitLab, Bitbucket), and development tools to provide continuous security scanning without disrupting developer workflows. Aikido's AI triages findings to reduce false positives, a persistent pain point in application security. Aikido raised $60 million in Series B funding in 2026, reaching unicorn status with a valuation exceeding $1 billion. Total funding is approximately $93 million, with the round led by DST Global. The company serves over 100,000 teams. The security posture is strong: Aikido holds ISO 27001:2022 and SOC 2 Type II certifications. Critically, the platform does not retain source code after scanning—code is analysed and results are stored, but the actual source code is not persisted. This is an important architectural decision for security-conscious organisations. Belgian incorporation provides EU jurisdiction and GDPR coverage. Aikido actively open-sources components of its platform, demonstrating transparency in the security space. The company is also pursuing FedRAMP certification for US government clients. For European development teams, Aikido offers a compelling combination: EU-incorporated security platform with strong certifications, no code retention, and a unified approach to application security.

TrustKit Score Breakdown

?84% Strong
Data Residency
Where is your data stored and processed?
Hosted on AWS infrastructure. Source code is not retained after scanning. Belgian company but AWS hosting means data may traverse US infrastructure. Code non-retention is a strong architectural decision.
3/5
Legal Jurisdiction
Which laws govern the company and your data?
Belgian NV incorporation under EU law. Full GDPR coverage. No US parent company. AWS hosting introduces some considerations but code non-retention mitigates risks.
4/5
Data Retention & Training
Is your data used for model training?
Source code is explicitly not retained after scanning—only results are stored. This is a best-in-class approach for security scanning tools. No training on customer code.
5/5
Certifications
ISO 27001, SOC 2, Cyber Essentials, etc.
ISO 27001:2022 and SOC 2 Type II certified. Exceptional for a security company. FedRAMP certification in progress. Strong independent verification of security controls.
5/5
Regulatory Fit
Suitability for regulated industries and professional services
Strong certifications and EU jurisdiction. Code non-retention architecture is highly suitable for regulated industries. Belgian incorporation and ISO/SOC certifications support enterprise procurement.
4/5

Pricing

FreemiumFree tier
FreeFree
TeamFree
EnterpriseFree
Full pricing details →

Quick Facts

Starting PriceFree tier / Paid plans availableData HostingAWS (code not retained after scanning)Trains on Your DataSource code not retained after analysisFounded2022Employees51-200
Visit Aikido Security

Frequently Asked Questions

Is Aikido Security GDPR compliant?

Aikido Security has a TrustKit compliance score of 84% (Strong). Data Residency: Hosted on AWS infrastructure. Source code is not retained after scanning. Belgian company but AWS hosting means data may traverse US infrastructure. Code non-retention is a strong architectural decision.. Legal Jurisdiction: Belgian NV incorporation under EU law. Full GDPR coverage. No US parent company. AWS hosting introduces some considerations but code non-retention mitigates risks..

Where does Aikido Security store data?

Aikido Security hosts data in: AWS (code not retained after scanning). Hosted on AWS infrastructure. Source code is not retained after scanning. Belgian company but AWS hosting means data may traverse US infrastructure. Code non-retention is a strong architectural decision.

Does Aikido Security train on user data?

Aikido Security: Source code not retained after analysis. Source code is explicitly not retained after scanning—only results are stored. This is a best-in-class approach for security scanning tools. No training on customer code.

What certifications does Aikido Security hold?

Aikido Security holds: ISO 27001, SOC 2 Type II. ISO 27001:2022 and SOC 2 Type II certified. Exceptional for a security company. FedRAMP certification in progress. Strong independent verification of security controls.

Compare Aikido Security With

Langdock iconLangdockOneTrust iconOneTrustDarktrace iconDarktraceCrowdStrike Falcon iconCrowdStrike FalconNordVPN iconNordVPNProton VPN iconProton VPN

Similar Tools

CrowdStrike Falcon icon
CrowdStrike Falcon
AI-native cloud cybersecurity platform for endpoint, identity, and cloud protection
84%
Darktrace icon
Darktrace
AI cybersecurity platform for autonomous threat detection and response across enterprise environments
100%
Featurespace icon
Featurespace
Cambridge-founded AI platform for real-time adaptive fraud detection in financial services
84%
Giskard icon
Giskard
Open-source and enterprise AI red-teaming platform for LLM security and quality testing
92%
Hawk icon
Hawk
AI-native anti-money laundering and fraud prevention for banks and payment firms
88%
IBM watsonx icon
IBM watsonx
Enterprise AI platform with built-in governance, trust, and transparency
96%