Skip to Content

Trust Center

by
Odoo

147.52

v 18.0 Third Party
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Website (website)
Lines of code 3206
Technical Name trust_center
LicenseOPL-1
You bought this module and need support? Click here!
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Website (website)
Lines of code 3206
Technical Name trust_center
LicenseOPL-1

Trust Center

A modular, configurable security & trust portal for your Odoo Website.
SOC 2-ready, NDA-gated, fully customizable. No fixed template.

Trust Center for Odoo

Answer customer security questionnaires on day one

  • Stop emailing SOC 2 reports. Send prospects to a single URL where they can self-serve everything they need under your access controls.
  • Sign NDAs without leaving Odoo. Built-in NDA acceptance with versioned legal text, typed-name signatures, and audit-ready IP + timestamp. No Odoo Sign module required.
  • Choose how each document is gated. Public download, email verification, NDA acceptance, or manual approval. Set the policy per document.
  • Show your security posture clearly. Compliance badges, sub-processor list, security controls with met / in-progress / not-met status. The way customers expect to see it.
  • Know who's looking and what they downloaded. Built-in analytics with daily charts and filters. See which documents drive the most access requests.
  • Stay compliant without extra work. GDPR-ready retention with automatic purge, one-click forget-this-requester, and per-company data isolation out of the box.
  • Embed it anywhere on your website. Drag the Trust Center block onto any page from the Odoo Website snippet drawer.
  • Make it yours. Set your primary color, upload your logo, edit copy directly in the Odoo backend. No theme files to fork.
  • Compatible with Odoo 18 Community and Enterprise. Installs with realistic demo data so you can walk through the full flow before customizing.

Modular by design

Choose your cards. Choose your layout. Edit in Odoo.

Every other trust portal in this category, SafeBase, Drata, Vanta, Conveyor, ships a fixed template. Trust Center for Odoo is fully modular: admins choose which cards appear, their order, and how wide each card spans on the page.

Eight card types out of the box: Overview, Compliance badges, Documents (with four access tiers), Sub-processors, Risk Profile, Control sections (with status + frequency + per-section attached docs), FAQ, and Updates. Add an "AI Use" control card or any topic-specific Control card in under a minute.

Public dashboard at /trust

Branded with your logo, primary color, and intro copy

Public trust center page

Features

Modular card grid

Pick which cards appear, drag them into the order you want, and resize each one to span a third, two-thirds, or the full row. Mobile stacks automatically. Singleton card types (Overview, Compliance, FAQ, Sub-processors, Risk Profile, Updates) are enforced server-side so admins can't double them up by accident.

Compliance badges

SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS pre-seeded. Add your own frameworks with custom badges and link each one to the documents that back it up.

GDPR-ready by default

Two-step email verification on every email-gated download (no open mail relay). One-click "Forget this requester" scrubs personal data across all related records. Configurable retention window with automatic daily purge.

NDA workflow built-in

Configurable NDA template with version snapshots. Signers accept by typed name. The legal text is frozen at acceptance time. IP and timestamp are recorded for audit. No Odoo Enterprise or Sign module required.

Document vault with four access tiers

Public download, email verification, NDA acceptance, or manual approval. Choose the policy per document. Every access link is unique, time-limited, and revocable.

Status tracking your auditor can read

Show each security topic with a clear status (met, in-progress, or gap), an optional review-frequency badge, supporting documentation, and copy-link anchors so customers can cite specific controls. Five default topics seeded.

Sub-processors list

A first-class card type for listing the third-party vendors you rely on, with country, purpose, and last-reviewed date. Update once; customers and auditors see it instantly.

Customer-facing FAQ

A dedicated FAQ card type with collapsible question / answer pairs, client-side search, and copy-link anchors so prospects can deep-link to the answer they care about.

Built-in analytics

Page views, card views, document downloads, and access-request lifecycle events all logged. Filter and group in the backend by event type, card, or document.

Search built-in

Instant client-side search filters the dashboard cards. Each card detail page has its own search that narrows sections, documents, FAQs, sub-processors, and updates.

Website-builder snippet

Drag the Trust Center block onto any Website page from the snippet drawer's Content group. Use it on a marketing page, a sales page, or anywhere your customers look first.

Multi-company isolation

Every record stays scoped to the company that owns it. Run as many legal entities as you have in Odoo without their trust pages ever bleeding into each other.

Manage everything from the Odoo backend

Familiar list / kanban / form views. No new admin UI to learn.

Trust center backend

Approve access requests in one click

Access requests

Control cards: security topics with clear status

Each topic has its own page with status, optional review-frequency badges, and per-section copy-link anchors

Control card detail page

NDA workflow built in

Configurable legal text, typed-signature acceptance, email verification, audit-ready record

NDA acceptance page

Requirements

Odoo 18 (Community or Enterprise) with the website, portal, and mail modules installed.

No external API keys, no third-party services, no recurring fees beyond the one-time purchase.

Support

Bug reports and configuration questions are handled by the author within 14 days. Use the "Contact Author" button at the top of this page or reach out via email.

Trust Center

Trust Center publishes a customer-facing portal showing your organization's security posture, compliance certifications, subprocessors, and gated access to sensitive documents like SOC 2 reports and pentests.

Features

  • Public /trust page with branding (logo, headline, intro, primary color).
  • Compliance framework badges (SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS seeded).
  • Document vault with four access levels: public, email-gated, NDA-required, manual approval.
  • Access request workflow with manual approval, time-limited tokens, email/IP rate limiting, and a honeypot field for bot mitigation.
  • Subprocessor list and security update announcements.
  • Backend admin with two security groups (User, Manager) and per-company record rules.

Installation

  1. Install the module from the Apps menu.
  2. Open Trust Center → Configuration → Trust Center and create a record.
  3. Toggle Published when ready.
  4. Visit /trust on your website to verify rendering.

Configuration

The Trust Center record is the singleton config: name, headline, intro HTML, logo, primary color, and contact email. Frameworks, documents, subprocessors, and updates are managed from their own menus or directly from the Trust Center form's notebook tabs.

Usage

When a visitor requests access to a gated document, a trust.access.request record is created in pending state. A Trust Center Manager reviews, approves or denies. On approval, a 32-byte URL-safe token and 30-day expiration are written, and (M2+) an email with the portal link is sent to the requester.

Roadmap

See the project DESIGN document for the milestone-based roadmap (M1–M7+). This release covers M1 (foundation) plus partial M2 (access request workflow and gating model; token-gated download endpoint pending).

Odoo Proprietary License v1.0

This software and associated files (the "Software") may only be used (executed,
modified, executed after modifications) if you have purchased a valid license
from the authors, typically via Odoo Apps, or if you have received a written
agreement from the authors of the Software (see the COPYRIGHT file).

You may develop Odoo modules that use the Software as a library (typically
by depending on it, importing it and using its resources), but without copying
any source code or material from the Software. You may distribute those
modules under the license of your choice, provided that this license is
compatible with the terms of the Odoo Proprietary License (For example:
LGPL, MIT, or proprietary licenses similar to this one).

It is forbidden to publish, distribute, sublicense, or sell copies of the Software
or modified copies of the Software.

The above copyright notice and this permission notice must be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
DEALINGS IN THE SOFTWARE.

Please log in to comment on this module

  • The author can leave a single reply to each comment.
  • This section is meant to ask simple questions or leave a rating. Every report of a problem experienced while using the module should be addressed to the author directly (refer to the following point).
  • If you want to start a discussion with the author or have a question related to your purchase, please use the support page.