Protecting your online data is a necessity these days, especially if you outsource services to vendors who must access that data. You want to be sure that their protocols for security, privacy, confidentiality, etc. are rock solid.
Kryterion just received SOC 2 Type II compliance approval, and that’s great news for our clients since we handle their data on a regular, often daily, basis.
We’ve always had controls in place, but SOC 2 Type II takes security to a new level.
Wait…SOC what? What’s that? And why should I care?
SOC stands for Service Organization Control. It’s an auditing procedure set up by the American Institute of Certified Public Accountants (AICPA) to ensure that service providers like Kryterion securely manage their clients’ data.
For companies that value data security and peace of mind, discovering the extra protection that SOC 2 Type II provides is very welcome news.
In 2018, we became SOC 2 Type I compliant by passing a rigorous audit of our internal controls as they relate to our clients’ financial reporting.
SOC 2 Type II is far more comprehensive. We were audited for compliance with five trust principles established by the AICPA: security, privacy, confidentiality, availability and data processing. You can find more details about SOC 2 on the AICPA web site.
And just so you know, achieving SOC 2 Type II compliance is unusual for a company of our size. The time, expense, effort and scrutiny involved normally keep smaller companies from pursuing it.
And while we don’t normally consider ourselves small as such, we do have big ambitions!
Plus, we’re obsessed with providing exceptional service to our clients. That means that we’ll be requesting an audit each year just to keep up with any changes in the SOC 2 Type II standard.
We care about protecting our clients’ data.
We’d enjoy the chance to do the same for your company. Let’s talk! Just send us an email at [email protected].