SOC2

SOC 2 is a cybersecurity compliance framework developed for service and technology providers that handle customer data. SOC 2 drives organizations to build strong, continuous security processes to protect their customer data.

SOC 2 Type I

• Point in time

• Assesses the design and implementation of security processes at a specific point in time.

SOC 2 Type II

• 3 - 12 months

• Assesses the effectiveness of security processes by observing operations over a period of at least 3 months, with 12 months recommended.