At SecureDocs Virtual Data Room, data security is our top priority, and we continually invest in measures to ensure our customer data stays safe. We are pleased to announce that we are SOC 2, Type 2 compliant.
After a rigorous evaluation, SecureDocs, Inc., the parent company of SecureDocs, has successfully completed its SOC 2, Type 2 audit. Conducted by an independent auditor, the report assures that SecureDocs, Inc. adheres to one of the most stringent industry-accepted auditing standards for service companies. It also declares that SecureDocs, Inc.’s business process, information technology, and risk management controls are properly designed.
What is SOC 2?
The SOC 2 evaluation was developed by the American Institute of CPAs (AICPA). A SOC 2 audit affirms a service organization’s non-financial reporting controls comply with AICPA’s “Trust Service Criteria,” which include categories such as security, confidentiality, and more.
The Trust Service Criteria Covered in SecureDocs, Inc.’s Report Include:
- Security – Information and systems are protected against unauthorized access and unauthorized disclosure.
- Availability – Information and systems are available for operation and use.
- Confidentiality – Confidential information is protected.
The official SOC 2 audit examined SecureDocs, Inc.'s internal controls, policies, and processes for its software-as-a-service offerings. It also reviewed SecureDocs, Inc.'s risk management and sub service (vendor) due diligence processes, as well as the company's overall IT infrastructure, software development life cycle, change management, logical security, network security, physical & environmental security, and computer operations.
Type 1 versus Type 2 Reports:
There are two different SOC 2 reports offered, Type 1 and Type 2. SecureDocs, Inc. received a SOC 2, Type 2 report. Here are the differences between the two:
SOC 2, Type 1 - This is a report of a company’s policies and procedures at a specific point in time (one day).
SOC 2, Type 2 - This is a report of a company’s controls over a period of time to ensure that a business adheres to their policies on an ongoing basis.
Why is SOC 2 important?
We built SecureDocs Virtual Data Rooms with security in mind, and obtaining a SOC 2, Type 2 audit demonstrates our commitment to taking every measure possible to ensure our customers’ data remains secure.
"We are pleased that our SOC 2 report has shown that we have the appropriate controls in place to mitigate risks related to the services we provide to our customers,” said CEO Will Reynolds. “Our clients trust us to protect their sensitive corporate information at all times, and this report serves as another example of how we’re doing that.”
To learn more about SecureDocs Virtual Data Room advanced security features, visit our Security page.