Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

OpenAI bets on families as ChatGPT goes deeper into households

A new app, HyperTexting, turns the open web into a social media scrolling-like stream

Dumb Co dared me to exchange my iPhone for a hacked phone

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    OpenAI bets on families as ChatGPT goes deeper into households

    11 July 2026

    Meta removes controversial AI feature on Instagram after backlash

    11 July 2026

    OpenAI launches its new family of models with GPT-5.6

    10 July 2026

    Fidji Simo resigns from the no. 2 role

    10 July 2026

    Nvidia is a victim of the PC market it created

    9 July 2026
  • Apps

    A new app, HyperTexting, turns the open web into a social media scrolling-like stream

    11 July 2026

    Apple is suing OpenAI for alleged trade secret theft

    11 July 2026

    EU threatens Meta with fines for addictive features on Facebook and Instagram

    10 July 2026

    Instagram users: Here’s how to stop Meta’s AI from using your photos

    10 July 2026

    Anthropic’s new Claude ability quietly sells you on the AI

    9 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

    10 July 2026

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026
  • Hardware

    Dumb Co dared me to exchange my iPhone for a hacked phone

    11 July 2026

    SK Hynix raises $26.5 billion in largest foreign public IPO in US history, set to build new fabs in US

    11 July 2026

    After Apple, smartphone manufacturing boom in India enters new phase with Vivo JV

    10 July 2026

    Elon Musk praises Mythos/Fable, promises not to ‘cut’ Anthropic

    10 July 2026

    US investors will soon have access to SK Hynix, another memory maker driving the AI ​​boom

    7 July 2026
  • Media & Entertainment

    Netflix could be planning “always on” live TV channels.

    11 July 2026

    Netflix is ​​dealing with shorter video content with its new set of publisher deals with Variety and others

    8 July 2026

    Netflix invented binge watching. Now he may be over it.

    7 July 2026

    New Google ad imagines a Declaration of Independence written with the help of artificial intelligence

    4 July 2026

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026
  • Security

    US cybersecurity agency CISA had to create the incident guide during the incident, the agency reveals

    11 July 2026

    Florida ransomware dealer convicted of helping ransomware gang extort US companies

    10 July 2026

    Hacktivists call out Trump by hacking and defacing US military websites

    8 July 2026

    Canada’s spy agency says it hacked drug traffickers, extremists and a ransomware gang last year

    6 July 2026

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026
  • Startups

    Phia Accused of ‘Cookie Stuffing’, Taking Affiliate Credit for Unearned Purchases

    11 July 2026

    Oratomic raises $300M to build sustainable quantum computer that only needs 20,000 qubits

    10 July 2026

    These AI startups are growing revenue at an ever-faster pace

    10 July 2026

    Popular Open Source AI Developer Tool Ollama Raises $65M, Grows to Nearly 9M Users

    9 July 2026

    With EU support, QuantumDiamonds aims to accelerate chip manufacturing

    9 July 2026
  • Transportation

    Slate Auto partners with Crayola to paint its EV truck

    10 July 2026

    Autonomous drone delivery startup Manna plans major US expansion

    9 July 2026

    Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

    9 July 2026

    Another massive data breach exposed millions of driver’s license numbers

    8 July 2026

    This startup brings dealers together to bid on your used car

    7 July 2026
  • Venture

    Filed Under: College Fizz App Accuses VC Of Sharing Confidential Startup Info With Rival Sidechat

    11 July 2026

    Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

    10 July 2026

    Nandan Nilekani steps down as GP at Fundamentum as it launches third $200m fund

    9 July 2026

    What are bending spoons? The little-known owner of AOL and Vimeo who is now public

    5 July 2026

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»Delve accused of misleading customers with ‘false compliance’
Security

Delve accused of misleading customers with ‘false compliance’

techtost.comBy techtost.com22 March 202605 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
Delve Accused Of Misleading Customers With 'false Compliance'
Share
Facebook Twitter LinkedIn Pinterest Email

A anonymous substack post published this week blames the compliance startup Dig to “falsely” convince “hundreds of customers that they were in compliance” with privacy and security regulations, exposing those customers to “criminal liability under HIPAA and heavy fines under GDPR.”

Delve is a Y Combinator-backed startup that last year announced it would raise a $32 million series at a $300 million valuation. (The round was led by Insight Partners.) On Friday, the startup attempted to counter the allegations on her blogcalling the Substack post “misleading” and saying it “contains a number of inaccurate claims.”

The Substack post is credited to “DeepDelver”, who described himself as working on a (now former) Delve client. In response to questions via email from TechCrunch, DeepDelver said that they and their partners “have chosen to remain anonymous for fear of retaliation from Delve.”

In their post, DeepDelver recounted receiving an email in December that claimed the startup had “leaked a spreadsheet of confidential customer reports.” While Delve CEO Karun Kaushik apparently assured customers in a follow-up email that they were in compliance and no outside parties had access to sensitive data, DeepDelver said they and other customers had become suspicious.

“Having the shared experience of being overwhelmed by the Delve experience and having a general sense that something terrible was going on, we decided to pool resources and investigate together,” they wrote.

Their conclusion? That Delve “achieves its claim of being the fastest platform by producing bogus data, generating auditor conclusions on behalf of certification factories that report seals, and bypassing basic framework requirements, telling customers they’ve achieved 100% compliance.”

DeepDelver went into significant detail about these allegations, accusing the startup of providing customers with “fabricated evidence of board meetings, tests and processes that never happened,” then forcing those customers to “choose between adopting fake evidence or performing mostly manual tasks with little real automation or AI.”

Techcrunch event

San Francisco, California
|
13-15 October 2026

DeepDelver also claimed that nearly all of Delve’s clients appear to have gone through two auditing firms, Accorp and Gradient, which they described as “part of the same business,” one that operates primarily in India, with only a nominal presence in the United States.

These companies, they said, are simply reports created by Delve. As a result, DeepDelver said the startup is “inverting” the normal compliance structure: “By creating auditor conclusions, test procedures and final reports before any independent review, Delve places itself in the role of both implementer and examiner. This is not a technicality. It is a structural fraud that invalidates the entire certification.”

In addition to accusing Delve of misleading its customers, DeepDelver said the startup helps those customers “mislead the public by hosting trust pages that contain security measures that were never implemented.”

DeepDelver said that while their company was discussing its issues with Delve, the startup “sent us several boxes of donuts […] to keep us happy.” However, DeepDelver’s employer has reportedly taken down the trust page and no longer relies on the startup for compliance.

Delve responded to the accusations by saying that it does not issue compliance reports at all. Rather, it is an “automation platform” that ingests information about compliance and then provides auditors with access to that information.

“Final reports and opinions are issued solely by independent, authorized auditors, not by Delve,” the company said.

Delve also said that its customers “can choose to work with an auditor of their choice or choose to work with one of Delve’s network of independent, accredited third-party auditing firms.” These auditors, the startup said, are “established companies that are widely used across the industry, including other compliance platforms.”

Responding to accusations that it provides customers with “fake data,” Delve responded that it simply offers “templates to help teams document their processes against compliance requirements, just like other compliance platforms.”

“Drafts are not the same as ‘careful evidence,'” the company said.

Delve added that it is “actively investigating any leaks” and “still looking into Substack.”

When asked about Delve’s response, DeepDelver told TechCrunch that they were “confused by its laziness, clumsiness, and insolence.”

“They are trying to escape [of] they are held responsible by denying that they have ‘pre-populated evidence’, but call them ‘standards’, effectively shifting the onus to customers to adopt the ‘standards’ as they are, DeepDelver said.

They added that there are “some very serious allegations” that Delve didn’t look into at all: “The India category, the lack of AI (they only talk about ‘automations’) and the trust page (lol) containing controls that were never implemented.”

Apparently DeepDelver isn’t done with their review, as they promised, “Part II will follow soon.”

In addition, after the initial publication of Substack, an X-user named James Zhou he said were able to access sensitive information from Delve, such as employee background checks and stock vesting schedules. Dvuln founder Jamieson O’Reilly shared more details from what O’Reilly said was a conversation with Zhou about “several security gaps in Delve’s external attack surface.”

TechCrunch sent an email seeking additional comment to the media contact address listed on Delve’s website. The email bounced, but after this article was published, I received a calendar invite for a “Demo Demo” later this week.

This post was originally published on March 21, 2026. It has been updated with email responses from DeepDelver, additional information about alleged security vulnerabilities provided by Jamieson O’Reilly, and additional details about Delve’s response to TechCrunch.

Accused compliance customers Delve Dig false misleading
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleThe features powered by Gemini in Google Workspace that are worth using
Next Article Apps that distract you from the endless cycle of scrolling
bhanuprakash.cg
techtost.com
  • Website

Related Posts

US cybersecurity agency CISA had to create the incident guide during the incident, the agency reveals

11 July 2026

Phia Accused of ‘Cookie Stuffing’, Taking Affiliate Credit for Unearned Purchases

11 July 2026

Florida ransomware dealer convicted of helping ransomware gang extort US companies

10 July 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

OpenAI bets on families as ChatGPT goes deeper into households

11 July 2026

A new app, HyperTexting, turns the open web into a social media scrolling-like stream

11 July 2026

Dumb Co dared me to exchange my iPhone for a hacked phone

11 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

10 July 2026

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026
Startups

Phia Accused of ‘Cookie Stuffing’, Taking Affiliate Credit for Unearned Purchases

Oratomic raises $300M to build sustainable quantum computer that only needs 20,000 qubits

These AI startups are growing revenue at an ever-faster pace

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.