UiPath Sets AI Security Bar with First-of-its-Kind Agent Certification

NEW YORK, NY – March 09, 2026 – In a move that could reshape enterprise confidence in artificial intelligence, agentic automation leader UiPath today announced it has become the first company to achieve AIUC-1 certification. This new global standard, focused specifically on the security and reliability of AI agents, provides a verifiable benchmark in a market grappling with the risks of deploying autonomous AI in sensitive business environments.

The certification, conducted by the specialized cybersecurity auditor Schellman, validates that UiPath's suite of AI products—including its Intelligent Extraction Processing (IXP), Agents, and Autopilot—operates safely and reliably under real-world pressures. For businesses hesitant to hand over critical processes to AI, this development marks a significant step toward bridging the gap between AI hype and secure, practical implementation.

A New Standard for AI Trust

The AIUC-1 certification was created by the Artificial Intelligence Underwriting Company (AIUC) to address a critical void in AI governance. While high-level frameworks like the NIST AI Risk Management Framework and ISO 42001 provide essential guidance, AIUC-1 translates these principles into specific, auditable controls designed for AI agents that act on behalf of users. It is being positioned as the "SOC 2 for AI agents," a tangible trust signal for a new class of technology.

Unlike broader governance frameworks, AIUC-1 focuses intensely on how AI agents behave in production. It covers six core enterprise risk domains: Data & Privacy, Security, Safety, Reliability, Accountability, and Societal Impact. To achieve certification, UiPath’s systems were subjected to rigorous testing.

“UiPath is the first enterprise automation company to achieve AIUC-1 certification,” said Rajiv Dattani, Co-founder at Artificial Intelligence Underwriting Company. “To achieve this, they subjected their suite of agentic AI systems to 2000+ technical evaluations, and a comprehensive audit of their AI policies and technical guardrails. This demonstrates UiPath’s commitment to responsible AI agent deployment in enterprise environments.”

Crucially, the certification is not a one-time event. It requires ongoing technical testing at least quarterly to ensure that safeguards evolve in lockstep with emerging AI capabilities and threats, a key demand from security leaders concerned about the rapid pace of AI development.

Bridging the Enterprise AI Adoption Gap

The introduction of a verifiable security standard arrives at a critical juncture for enterprise AI. While the promise of agentic automation is vast, adoption has been stymied by profound security and reliability concerns. Recent industry studies paint a stark picture: one report found that a staggering 98% of cybersecurity professionals have slowed or reduced the scope of agentic AI projects due to security and data fears. For 40% of organizations, security and compliance remain the primary obstacle to scaling these powerful tools.

Concerns range from AI-powered data leaks and intellectual property exposure to the unpredictable nature of autonomous systems. With nearly two-thirds of organizations admitting they lack full visibility into their AI risks, the need for a trusted, independent validation has become paramount.

AIUC-1 is designed to be that validation. By providing a comprehensive audit report that attests to an AI agent's resilience against attacks, data protection capabilities, and operational boundaries, the certification aims to streamline the procurement process and give CISOs, legal teams, and IT leaders the confidence to move forward.

"As businesses deploy AI agents throughout the enterprise, trust is fundamental, especially when used for sensitive workflows," said Scott Roberts, Chief Information Security Officer at UiPath. "AIUC-1 certification provides our customers with independent validation that our AI agents are built to protect their data, stay within approved boundaries, and resist sophisticated attacks. This commitment to security and reliability standards gives our customers the confidence and peace of mind they need to adopt agentic automation across their business for real, demonstrable impact.”

A Rigorous Audit for a New Era of Risk

The credibility of any standard rests on the rigor of its verification process. The AIUC-1 audit was conducted by Schellman, a leading global attestation and compliance firm. Schellman's involvement adds significant weight to the certification, given its reputation as a top-tier cybersecurity auditor and the world's first ANAB-accredited certification body for ISO 42001, the international standard for AI management systems.

The audit process goes far beyond policy reviews. It involves extensive third-party technical testing designed to push AI systems to their limits, probing for vulnerabilities like prompt injection, data leakage, and hallucinations under adversarial conditions. This focus on what an AI system could do, rather than just what it is supposed to do, represents a more proactive approach to AI safety.

“UiPath’s achievement of AIUC-1 certification reflects a real commitment to the governance, transparency, and security standards that enterprise AI now requires,” said Avani Desai, CEO at Schellman. “As the independent auditor for both their ISO 42001 and AIUC-1 certifications, we can attest that this validation was earned through rigorous evaluation. This is where the market is heading. Responsible AI is no longer optional.”

This achievement builds upon UiPath's recent ISO/IEC 42001:2023 certification, creating a layered and comprehensive assurance package for customers looking to infuse AI and automation deeply into their operations.

Strategic Implications and a Competitive Edge

For UiPath, achieving this certification is more than a compliance milestone; it is a significant strategic move. As the first enterprise automation platform to meet the AIUC-1 standard, the company gains a powerful first-mover advantage and a key differentiator in a crowded market. While competitors like Automation Anywhere and Microsoft also emphasize security, UiPath can now point to a concrete, independently verified standard that its rivals have yet to match for their agentic platforms.

This advantage could prove decisive in sales cycles, particularly with large enterprises in highly regulated industries such as finance, healthcare, and government, where risk aversion is high. Furthermore, UiPath's role as a Founding Technical Contributor to the AIUC-1 standard signals its influence in shaping the future of AI governance. By helping to build the benchmark, the company not only demonstrates its expertise but also positions itself as a thought leader committed to the long-term health of the AI ecosystem.

This proactive approach to building trust infrastructure is likely to pressure other vendors in the AI and automation space to pursue similar validations. As enterprises increasingly demand verifiable proof of AI safety and reliability, certifications like AIUC-1 may transition from a competitive advantage to a market expectation, raising the bar for the entire industry.