SaaSDossier

Stripe vs HubSpot — Security Documentation Compared (What Each Publishes)

SaaSDossier™ records what Stripe and HubSpot each publish about security across the same 55 fields in 10 domains. That makes their published documentation readable on the same terms. Each dossier includes fields marked Documented and fields marked Question surfaced. This page previews domain coverage; the field-level record lives in each dossier.

Two states. No third. No judgment.

Documented

The field was found in the vendor's published sources, quoted and cited in the vendor's own words.

Question surfaced

Not identified in the vendor-published sources reviewed. This does not establish absence of the control.

Comparison · Side by side

Cover of the Stripe Security Evidence Dossier
Licensed Edition · Dossier No. 001

Stripe

46 Documented9 Questions surfacedof 55

Evidence date 22 June 2026 · 14 vendor pages reviewed

Source-linked · reviewed before release

US$1,500 View Get on Whop
Cover of the HubSpot Security Evidence Dossier
Licensed Edition · Dossier No. 002

HubSpot

49 Documented6 Questions surfacedof 55

Evidence date 22 June 2026 · 11 vendor pages reviewed

Source-linked · reviewed before release

US$1,500 View Get on Whop

See the format first, then decide. See all 55 fields in the free OpenAI ledger →

Frequently asked

What do “Documented” and “Question surfaced” mean?
Those are the only two states. Documented means the field was found in the vendor's published sources, quoted and cited. Question surfaced means: “Not identified in the vendor-published sources reviewed. This does not establish absence of the control.” It is a prompt for your own follow-up, never a judgment.
Does a dossier decide whether a vendor is good or bad?
No. A dossier records what the vendor publishes — nothing more. There is no third state and no number that says good or bad. It gives you the vendor's own record so you can reach your own conclusion: clarity before commitment.
Where does the evidence come from?
Only from the vendor's own published pages — trust and security centers, privacy and legal pages, data-processing terms, status pages, and subprocessor lists. Every line traces to a source, and each dossier carries a SHA-256 integrity record. No third-party articles or opinions are used as evidence.
Can I see the format before I buy?
Yes. The OpenAI Public Edition is free and complete — the same 55-field framework, evidence ledger, source register, and integrity record as every Licensed Edition. The clearest way to inspect the format before licensing a vendor dossier.
Disclaimer. SaaSDossier is independent documentation research. It is not an audit, certification, rating, legal opinion, vendor approval, or substitute for professional vendor-risk, legal, procurement, GRC, vCISO, or security review.

Related references