PRIA Logo
← All companies

NCNO · CIK 1902733

What nCino, Inc. told the SEC could break it.

2 self-disclosed vulnerabilities, pulled from its own filings — each in the company’s words, with the source. This is the risk register almost nobody reads.

A limited set so far — we surface every cited disclosure we’ve extracted for NCNO. More may follow as additional filings are processed.

In its own words

What could break it.

Supplier concentration

  • platform dependence on Salesforcemedium

    Fundamental elements of the nCino Platform are built on the Salesforce Platform under an agreement with Salesforce; loss of or changes to that relationship would deeply impair nCino's ability to deliver its solutions.

    Fundamental elements of the nCino Platform are built on the Salesforce Platform and we rely on our agreement with Salesforce to provide this solution to our customers.

    SEC filing →As of 2026

Regulatory & policy

  • EU DORA / NISD2 ICT third-party provider ruleslow

    As a tech vendor to financial institutions, nCino is exposed to EU DORA and NISD2 ICT third-party/operational-resilience requirements, carrying significant fines (NISD2: ≥€10M or 2% of worldwide turnover) and potential personal liability for management.

    NISD2 states that any maximum fine which national implementing law provides for should at least be set at €10 million or 2% of total worldwide turnover, whichever is higher, where essential entities are concerned.

    SEC filing →As of 2026

The hidden graph

Who it depends on, and who depends on it.

Relationships surfaced from filings — including ones disclosed by the other side, which is how the non-obvious ones come to light.

Its suppliers

  • Amazon Web Services (Amazon.com, Inc.)

    We depend on data centers operated by or on behalf of Salesforce, AWS, and other third parties, and any disruption in the operation of these facilities could adversely affect our business and subject us to liability.

    Cited →

  • Salesforce, Inc.

    Fundamental elements of the nCino Platform are built on the Salesforce Platform and we rely on our agreement with Salesforce to use the Salesforce Platform in conjunction with these solutions, including for hosting infrastructure and data center operations.

    Cited →

In the MyPRIA app, this is checked against the companies you actually own.

← World Watch