Security Center

We're pleased to share several important updates regarding Benchling's security and compliance program.

2025 SOC 2 Type 2 Report Now Available

Benchling's 2025 SOC 2 Type 2 report is now available for download in the Trust Center. This year's audit expands our commitment to security with an enhanced scope that now includes:

• Benchling AI – Benchling AI is used to automate repetitive tasks with agents that import and organize data, create dashboards, and address complex queries. Benchling AI is designed to centralize wet lab data within an open platform, enabling model development in the dry lab and providing access to advanced models for molecule optimization or allowing users to register and utilize their own models.

• Benchling PipeBio Antibodies – PipeBio Antibodies is our platform designed to identify and optimize leads with advanced sequence analysis suited for antibodies, t-cell receptor (TCR), peptides, and other advanced biologics modalities. PipeBio Antibodies runs end-to-end bioinformatics workflows, and operates on a scalable, extensible, cloud platform.

2025 Penetration Test Reports Available

We've also completed our 2025 penetration testing program. Reports are now available for review for the following:

• Benchling Platform
• Benchling In Vivo
• PipeBio Antibodies

ISO 27001:2022 Recertification Completed

Benchling has successfully completed its ISO 27001:2022 recertification audit, including the additional controls and implementation guidance of ISO 27017:2015 and ISO 27018:2025.

Key highlights:

• Benchling PipeBio and Benchling AI are newly included in scope
• Zero non-conformities found during the audit
• Updated certificate expected by February 18, 2025

Access Your Documents

Current Trust Center subscribers can download all reports directly from the Trust Center portal.

If you have any questions or need assistance accessing these documents, please don't hesitate to reach out to our team.

Thank you for your continued trust in Benchling.

On December 3, 2025, the React team disclosed a security advisory for CVE-2025-55182, a vulnerability in React Server that allows unauthenticated remote code execution. Benchling’s Security team has confirmed that no Benchling products or services are impacted by this vulnerability. Our platform does not use the affected React Server components. We will continue to monitor developments related to CVE-2025-55182 and will provide updates if any relevant changes arise.

Benchling's updated SOC 2 Type 2 attestation report for Benchling's R&D Cloud products including Benchling Bioresearch, Benchling Bioprocess, and Benchling In Vivo, performed by Schellman Compliance, LLC. and covering the audit period from November 1, 2023 - October 31, 2024, is now available for download in Benchling's Trust Center.

Benchling's SOC 2 Type 2 report for the period covering from May 1, 2023 to October 31, 2023 is now available to request for download from our Trust Center.

Benchling recently completed its annual ISO 27001 audit of the Benchling R&D Cloud products including Benchling Bioresearch, Benchling Bioprocess, and Benchling In Vivo, performed by Schellman Compliance, LLC. The audit included the transition from ISO/IEC 27001:2013 to ISO 27001:2022 and the additional controls and implementation guidance of ISO/IEC 27017:2015 and ISO/IEC 27018:2019. An updated certificate is now available for download from Benchling’s Trust Center.

Doyensec, LLC just completed Benchling's 2024 security assessment / penetration test. The scope of this test covers the Benchling and In-Vivo platforms. Please see summary reports in the portal for more detail.