
Sync Rippling employee and access data with Thoropass to automate compliance evidence collection and keep your SOC 2 controls audit-ready year-round.
The Rippling–Thoropass integration connects your HR and IT data to Thoropass's compliance automation platform. Employee hire events, role changes, and terminations in Rippling flow into Thoropass automatically, generating personnel evidence and access control records for SOC 2, ISO 27001, and other compliance frameworks.
Thoropass uses Rippling as the authoritative source for who works at your company, what access they have, and when that access changed — the three pillars of most personnel-related compliance controls.
Teams connecting Rippling to Thoropass often complete the basic integration but don't configure the attribute mappings that Thoropass needs to auto-populate its control library. Without mapping job level, department, and employment type correctly, Thoropass generates evidence gaps that require manual remediation before audits.
thePeopleStack configures the Thoropass–Rippling integration with full attribute mapping, access review automation, and offboarding evidence capture. We align Rippling's custom field structure with Thoropass's control requirements so your compliance posture reflects real-time workforce changes without manual updates.

For clients with Canadian employees, thePeopleStack ensures the integration correctly scopes provincial employee data and addresses PIPEDA considerations for cross-border data sync to Thoropass's US-hosted platform.
Thoropass (formerly Laika) is a compliance automation platform for SOC 2, ISO 27001, and other frameworks. It integrates with Rippling to pull employee and access data, automatically populating the personnel controls that make up a significant portion of most compliance frameworks.
The integration supports SOC 2 Type I and Type II, ISO 27001, HIPAA, and PCI DSS. Rippling supplies the personnel evidence layer across all supported frameworks.
When Rippling processes a termination and completes deprovisioning, Thoropass captures the full event chain — termination date, access removal, and any related access review outcomes — as audit-ready evidence for offboarding controls.
Yes. thePeopleStack has configured compliance integrations for companies actively under audit. We prioritize evidence backfill and control gap remediation to minimize audit risk while completing the broader integration configuration.
Standard configuration takes 2–4 hours. If your Rippling instance has complex custom field structures or you're targeting multiple compliance frameworks simultaneously, additional scoping may be required.