Diligent Corporation

Diligent Corporation, also known as Diligent, is a provider of software solutions focused on governance, risk management, and compliance (GRC) as well as board collaboration tools. Its platform includes modules for board portal management, policy management, entity management, and risk assessment, designed to help organisations streamline regulatory reporting and oversight activities. The company markets its products to a range of sectors including healthcare, financial services, energy, and government entities, where stringent oversight and data protection requirements are prevalent. By offering integrated GRC capabilities, Diligent aims to support customers in meeting internal governance standards and external regulatory obligations.

The organisation’s reach is illustrated by the 2023 incident in which a cybersecurity breach on Diligent’s own network exposed personal data of 48,879 individuals associated with the University of Colorado Hospital Authority (UCHealth), a healthcare client that uses Diligent’s business operations tools. This event indicates that Diligent’s software is deployed within at least one major U.S. health system and that the vendor handles sensitive information on behalf of its customers. While the breach originated in Diligent’s environment, UCHealth confirmed that its internal systems were not compromised, underscoring the distinction between the provider’s infrastructure and the client’s operational networks. The incident also demonstrates the scale of data that can be entrusted to a GRC software provider when serving large organisations.

Diligent’s distinguishing attribute lies in its specialisation in governance and risk management software, a niche that combines regulatory expertise with technology to address complex compliance landscapes. The company’s offerings are positioned to help organisations navigate evolving requirements such as those imposed by the Sarbanes-Oxley Act, GDPR, and sector‑specific health information regulations. Its competencies include providing secure board communication tools, policy lifecycle management, and real‑time risk dashboards, which are intended to improve transparency and decision‑making for senior leadership and governing bodies. These capabilities have been highlighted in industry discussions as relevant for entities seeking to consolidate governance functions within a single digital platform.