FAQ
At Lodestone Security Group, we know that compliance and privacy can feel overwhelming—especially for fast-growing SaaS, AI, and healthtech companies. This FAQ page is here to give you clear, straightforward answers to the most common questions about our services, approach, and what to expect when working with us. If you don’t see your question here, feel free to reach out—we’re always happy to help.
1. What does Lodestone Security Group do?
We help SaaS, AI, healthtech, and data-driven companies achieve and maintain compliance with SOC 2, ISO 27001, HIPAA, GDPR, CCPA, and AI governance standards. Our services include audit readiness, privacy programs, vendor risk management, and fractional vCISO/privacy officer roles.
2. Who are your typical clients?
Our clients are US-based technology companies (15–250 employees) facing compliance requirements, pursuing enterprise deals, or expanding globally without hiring a full-time compliance team.
3. What makes your approach different?
We offer fixed-fee, hands-on guidance and deliver clear roadmaps and board-ready materials. Our focus is on practical, scalable solutions—no jargon, just actionable steps tailored to your business.
4. Do you only work with US companies?
No. While many of our clients are US-based, we also support international companies navigating US privacy and security requirements.
5. How do your service packages work?
We offer flexible service packages—like Global Trust Readiness, AI Compliance, and Healthcare Privacy Acceleration—each designed to address specific compliance needs with clear deliverables and timelines. We also provide a la carte options, so you can choose individual services based on your current priorities and budget.
6. What’s the first step to working with you?
Book a free intro call. We’ll discuss your needs, answer your questions, and recommend a practical path forward—no obligation.
7. Can you help if we’re new to compliance?
Absolutely. We specialize in making compliance accessible for early-stage and scaling tech companies, guiding you step by step.
8. What if we just need policies?
No problem. We offer a la carte policy development and documentation services. Whether you need a single policy or a full set, we’ll work with you to create clear, practical, and audit-ready documentation tailored to your business needs.
9. What’s included in your deliverables?
Deliverables vary by package and are tailored to your company’s goals. For more details on what’s included with each service, please see our Services page.
10. How is your pricing determined?
Pricing depends on your company size, the number of compliance frameworks needed, your existing documentation, project complexity, and urgency. After a quick discovery call, we’ll provide a custom quote tailored to your needs—so you know exactly what to expect before we start.
11. How do you keep client information secure?
We follow industry best practices for data security and confidentiality, using secure tools and processes to protect your information at every stage.
12. How do I get started?
Just reach out through our contact page or book a call online. We’ll take it from there!