# Stepwork > Stepwork is an interface automation platform that automates any workflow a human can do through a UI — no APIs needed. Record your flow once, run it forever. Stepwork uses vision-based automation to achieve ~75% task automation coverage across IT, Security, and GRC workflows, compared to ~12-20% with API-based tools. Data stays on your systems. SOC 2 Type II certified, NIST compliant, GDPR ready. - Founded in San Francisco, CA - Backed by Village Global, K5 Global, Upside Partnership - Available on macOS and Windows ## Core Capabilities - [Why Stepwork](https://www.stepwork.com/why-stepwork): How Stepwork compares to API-based automation — 3-4x greater coverage by automating through the UI instead of limited APIs - [Capabilities](https://www.stepwork.com/capabilities): Product features including Flows, Streams, Procedures, Variables, Recording, Slack Bot, ITSM integration, MFA support, and on-prem compatibility - [Security](https://www.stepwork.com/security): Enterprise security details — SOC 2 Type II, NIST, GDPR, locally stored data, AWS Bedrock, hardened containers - [Provisioning](https://www.stepwork.com/provisioning): Automated user provisioning for 300+ SaaS applications without SCIM or native APIs ## Company - [About Stepwork](https://www.stepwork.com/company): Mission, values, team, and investor information - [Compare](https://www.stepwork.com/compare): Side-by-side comparisons with alternative solutions ## Integrations - [Identity Providers](https://www.stepwork.com/integrations): Integrations with Okta, Microsoft Entra ID, Google Workspace, JumpCloud, and OneLogin - [Provisioning Directory](https://www.stepwork.com/provisioning/directory): Complete directory of SaaS applications with provisioning automation details ## Use Cases Stepwork automates workflows across three key areas: - **IT Operations**: Helpdesk tickets, password resets, onboarding/offboarding, license reconciliation, SSO reports - **Information Security**: Shadow IT remediation, user access reviews, incident audits, network patching - **GRC (Governance, Risk, Compliance)**: Evidence collection, SOC audit requests, policy checks, compliance reporting ## Optional - [Terms and Conditions](https://www.stepwork.com/terms-and-conditions) - [Privacy Policy](https://www.stepwork.com/privacy-policy) - [Data Processing Agreement](https://www.stepwork.com/data-processing-agreement) - [Subprocessors](https://www.stepwork.com/subprocessors)