Guardinex achieves SOC 2 Compliance
Guardinex achieves SOC 2 Compliance
We are pleased to announce that we have successfully completed a System and Organization Controls (SOC) 2 Type 1 audit, thus achieving compliance with the leading industry standard for customer data security, and demonstrating an ongoing commitment to providing a secure data environment for our customers.
The SOC 2 audit is one the highest recognized standards of information security compliance in the world. It was developed by the American Institute of CPAs (AICPA) to allow a third-party auditor to validate a service company’s internal controls with respect to information security. The SOC 2 Audited Report is the auditor’s opinion on how an organization’s security controls meet the SOC 2 criteria. SOC 2 has a rigorous requirement on how companies handle customer data and information, so compliance guarantees there are established and implemented organizational practices in place to safeguard customer data.
To obtain our audited SOC 2 Report, a third-party auditor, Johanson Group, reviewed our internal controls including policies, procedures and infrastructure regarding data security, firewall configurations, change management, logical access, backup and disaster recovery, security incident response and other critical areas of our business. Johanson Group attested to our information security controls meeting or exceeding the criteria established in all 5 categories of the Trust Services Criteria – Security, Confidentiality, Availability, Privacy and Processing Integrity.
The audit was completed with the help of Secureframe, a platform that enables organizations to obtain and maintain global compliance standards, and streamline the audit process. Secureframe assists with our continuous compliance strategy including the ability to continuously track, monitor, and remediate any compliance needs
We believe the relationship with our customers must be built on trust. The successful completion of our SOC 2 Report is one of many ways that we have planned to earn and retain that trust.
SOC 2 is just one aspect of our growing security program. We are committed to continually improving our information security program and retaining an annual SOC 2 audit to ensure we keep supporting our customers’ needs.