Delve accused of misleading customers with ‘fake compliance’
Anonymous whistleblower claims startup fabricated evidence and auditor reports for hundreds of clients.
A bombshell anonymous Substack post has leveled serious allegations against Y Combinator-backed compliance automation startup Delve. The author, 'DeepDelver,' claims to represent a group of former clients who allege Delve engaged in 'structural fraud' by fabricating evidence of board meetings and security tests, then having those reports rubber-stamped by specific audit firms. The post accuses Delve of inverting the compliance process by generating auditor conclusions before any independent review, potentially exposing its hundreds of customers to criminal liability under regulations like HIPAA and hefty GDPR fines.
Delve, which announced a $32 million Series A round last year at a $300 million valuation, has forcefully denied the accusations. In a blog post, the company called the Substack article 'misleading' and stated it does not issue compliance reports. Delve positions itself as an automation platform that ingests client information for auditors, with 'final reports and opinions issued solely by independent, licensed auditors.' The whistleblower countered that Delve sent 'multiple boxes of donuts' to placate them during disputes, and their former employer has since unpublished its trust page and stopped using Delve's services.
- Whistleblower 'DeepDelver' alleges Delve fabricated compliance evidence like board meetings and security tests.
- The post claims audit firms Accorp and Gradient rubber-stamped pre-generated reports, creating a 'structural fraud.'
- Delve denies issuing reports, calling itself an automation platform, after raising a $32M Series A at a $300M valuation.
Why It Matters
Trust in automated compliance is foundational; if allegations are true, clients face massive regulatory and financial risk.