Trust Center

List monitoring controls

Get all the information of the monitoring controls.

🔒 Requires Trust Center: List Monitoring Controls permission.

💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.

Securitybearer
Request
query Parameters
workspaceId
number

ID of the Workspace. If this is not sent, it will default to the global workspace.

Responses
200

Successful

401

Invalid Authorization

402

You must upgrade your plan to use this feature

403

You are not allowed to perform this action

412

You must accept the Drata terms and conditions to use the API

500

Internal server error

get/trust-center/controls
Request samples 
Response samples 
application/json
{
  • "isSLADisplayed": true,
  • "slaTime": 0,
  • "controls": { }
}
Get trust center access request by request id
Get the trust center request.


🔒 Requires Trust Center: View Access Request permission.


💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
path Parameters
id
required
string
 
query Parameters
workspaceId
required
number
 
Responses 
200
Successful


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


get/trust-center/requests/{id}
Request samples 
Response samples 
application/json
{
  • "email": "[email protected]",
  • "firstName": "Alondra",
  • "lastName": "Ramos",
  • "company": "Acme",
  • "requestId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
  • "managedBy": "Brayan Perez",
  • "documents": "[{\n            id: 5,\n            name: Report 5,\n            approvedAt: 2025-07-01T16:45:55.246Z,\n            deniedAt: 2025-07-01T16:45:55.246Z\n        }]",
  • "statuses": "[{\n            status: 'APPROVED',\n            source: 'SELF',\n            createdAt: 2025-07-01T16:45:55.246Z,\n            user: 'John Doe',\n        }]",
  • "ndaUrl": "https://acme.com",
  • "flowType": "SELF",
  • "autoApproveType": "SELF"
}
Approve access to private files by request id
Trust Center approve access to private files.


🔒 Requires Trust Center: Manage Access Request permission.


💎 Requires your account have the Trust Center Pro feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
path Parameters
id
required
string
 
Request Body schema: application/json
required
expiration
number  <= 1825 
Number of days to expire


 
expirationType
required
string
Default Access Length Type


 Enum: "DAYS" "WEEKS" "MONTHS" "YEARS"  
isNewExpiration
boolean
Is update expiration date checked


 
Responses 
200
Successful


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


put/trust-center/requests/{id}/approve
Request samples 
application/json
{
  • "expiration": 365,
  • "expirationType": "DAYS",
  • "isNewExpiration": false
}
Response samples 
application/json
{
  • "isApproved": true,
  • "trackingId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd"
}
Deny access to private files by request id
Deny access to private files for Trust Center.


🔒 Requires Trust Center: Manage Access Request permission.


💎 Requires your account have the Trust Center Pro feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
path Parameters
id
required
string
 
Responses 
200
Successful


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


put/trust-center/requests/{id}/deny
Request samples 
Response samples 
application/json
{
  • "isDenied": true
}
Get the private access info.
Get the private access info.


🔒 Requires Trust Center: Manage NDA Settings permission.


💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
query Parameters
workspaceId
number
ID of the Workspace. If this is not sent, it will default to the global workspace.


 
Responses 
200
Successful


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


get/trust-center/private-access
Request samples 
Response samples 
application/json
{
  • "flowType": "SELF",
  • "preapprovedEmailDomains": [
    • {
      • "id": 1,
      • "name": "domain.com",
      • "createdAt": "2020-07-06",
      • "deletedAt": null
      }
    ],
  • "preapprovedEmailAddresses": [
    • {
      • "id": 1,
      • "name": "[email protected]",
      • "createdAt": "2025-07-01T16:45:55.246Z",
      • "deletedAt": null
      }
    ]
}
Edit the company information private access section
Update the company information private access section.


🔒 Requires Trust Center: Manage NDA Settings permission.


💎 Requires your account have the Trust Center Pro feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
query Parameters
workspaceId
number
Workspace Id


 
Request Body schema: application/json
required
securityEmails
string  <= 768 characters 
Company's security/compliance email


 
removeNda
boolean
Remove the current NDA?


 
preapprovedEmailDomains
Array of strings
List of preapproved email domains


 
Responses 
200
Successful


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


put/trust-center/company-info/private-access
Request samples 
application/json
{
  • "securityEmails": "[email protected]",
  • "removeNda": true,
  • "preapprovedEmailDomains": "domain.com"
}
Response samples 
application/json
{}
Get all private documents
Get all the policies, compliance and security reports private documents.


🔒 Requires Trust Center: List Private Documents permission.


💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
query Parameters
q
string  <= 100 characters 
Filter private documents by searching for name


 
 Example:  q=Report 01
workspaceId
number  >= 1 
ID of the workspace


 
 Example:  workspaceId=1
Responses 
200
Successful


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


get/trust-center/private-documents
Request samples 
Response samples 
application/json
{
  • "privateDocuments": [
    • {
      • "id": 0,
      • "name": "string",
      • "type": "COMPLIANCE",
      • "file": "string",
      • "created_at": "2019-08-24T14:15:22Z",
      • "version": 0,
      • "isPublic": true
      }
    ]
}
Get trust center access requests
This endpoint returns requests of all statuses except "pending" by default


🔒 Requires Trust Center: List Access Requests permission.


💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
query Parameters
page
number  >= 1 
 Default:  1
Which page of data are you requesting


 
limit
number  [ 1 .. 50 ] 
 Default:  20
How many items are you requesting


 
sortDir
string
Which direction to sort the data (default: ASC)


 Enum: "ASC" "DESC"  
 Example:  sortDir=ASC
q
string  <= 100 characters 
Filter data to search requests


 
 Example:  q=Drata
status
string
Filter request by status


 Enum: "PROCESS_ERROR" "APPROVED" "DENIED" "NDA_SENT" "NDA_SIGNED" "FILES_SENT" "NDA_EXPIRED" "PENDING" "REVOKED" "ACCESS_EXPIRED" "AUTO_APPROVED"  
 Example:  status=APPROVED
Responses 
200
400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


get/trust-center/requests
Request samples 
Response samples 
application/json
{
  • "data": [
    • {
      • "requestId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
      • "createdAt": "2025-07-01T16:45:55.246Z",
      • "expirationDate": "2025-07-01T16:45:55.246Z",
      • "name": "Adam",
      • "lastname": "Markowitz",
      • "email": "[email protected]",
      • "company": "Socpilot",
      • "flowType": "SELF",
      • "isAutoApproved": false,
      • "status": "APPROVED",
      • "reviewedAt": "2025-07-01T16:45:55.246Z"
      }
    ],
  • "page": 1,
  • "limit": 10,
  • "total": 100
}
Create trust center request
Create a Trust Center request for private documents.


🔒 Requires Trust Center: Create Access Request permission.


💎 Requires your account have the Trust Center Pro feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
Request Body schema: application/json
required
email
required
string <email> 
Email of requester


 
name
required
string
First name of requester


 
lastname
required
string
Last name of requester


 
company
required
string
Company of requester


 
acceptTerms
required
boolean
Accept the NDA terms and conditions


 
required
Array of objects (TrustCenterRequestDocumentTypePublicDto) 
Private documents to request access


 
flowType
required
string
Type of private flow


 Enum: "SELF" "DIGITAL_SIGNATURE" "NO_NDA_REQUIRED" "SALESFORCE_CRM"  
Responses 
201
Created


400
Malformed data and/or validation errors


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


post/trust-center/requests
Request samples 
application/json
{
  • "email": "[email protected]",
  • "name": "FirstName",
  • "lastname": "LastName",
  • "company": "Company",
  • "acceptTerms": true,
  • "documents": [
    • {
      • "documentId": 1,
      • "type": "POLICY"
      },
    • {
      • "documentId": 2,
      • "type": "SECURITY_REPORT"
      }
    ],
  • "flowType": "SELF"
}
Response samples 
application/json
{
  • "statusCode": 0,
  • "message": "string",
  • "code": 0,
  • "debugInfo": {
    • "name": "string",
    • "message": "string",
    • "stack": "string"
    }
}
Retrieves CSV data for single Trust Center report
Generate Trust Center Report Csv


💎 Requires your account have the Trust Center Essentials feature. Contact your CSM for help upgrading.


Securitybearer 
Request 
query Parameters
startDate
required
string
Start date to generate the report


 
 Example:  startDate=2025-07-01T16:45:55.246Z
endDate
required
string
End date to generate the report


 
 Example:  endDate=2025-07-01T16:45:55.246Z
workspaceId
required
number
ID of the Workspace


 
 Example:  workspaceId=1
reportType
required
string
Report type to be generated


 Enum: "SUMMARY" "ACCESS_REQUESTS_LIST" "ACCESS_REQUESTS_APPROVED_DOMAINS" "ACCESS_REQUESTS_APPROVED_EMAILS" "DOCUMENT_REQUESTS_FILE_NAME" "PRO_REVENUE_INFLUENCED"  
 Example:  reportType=SUMMARY
Responses 
200
Successful


401
Invalid Authorization


402
You must upgrade your plan to use this feature


403
You are not allowed to perform this action


412
You must accept the Drata terms and conditions to use the API


500
Internal server error


get/trust-center/reports
Request samples 
Response samples 
application/json
{
  • "statusCode": 0,
  • "message": "string",
  • "code": 0,
  • "debugInfo": {
    • "name": "string",
    • "message": "string",
    • "stack": "string"
    }
}