Created by the American Institute of Certified Public Accountants (AICPA), SOC2 (System and Organization Controls) is a reporting framework that sets certain benchmarks for managing customer and user data. These benchmarks are based on five Trust Services Criteria - privacy, confidentiality, security, availability, and processing integrity.
Download the SOC II ReportDownload the Capabilities Table
Dimension
Awareness
Evaluation
Deployment
Usage
Support
Security
Strong
Moderate
Weak
Moderate
Strong
Scalability
Moderate
Strong
Strong
Strong
Moderate
Integration
Weak
Weak
Moderate
Weak
Weak
Customization
Strong
Strong
Moderate
Moderate
Weak
Support
Moderate
Weak
Strong
Moderate
Strong
Pricing
Moderate
Moderate
Moderate
Moderate
Moderate
Technology Readiness
Strong
Criteria
Availability
Feature Description
Security & Trust
SOC2 Compliance
3rd party Soc2 Type II audit
Cyber GRX Report
3rd party Risk Assessment for cyber security based on NIST standards
3rd Party PEN Test
3rd Party PEN Test
Security Incident Management
Security Incident Management Process
Single Sign-On
Can be integrated to any SSO
Privacy Policy
as per Soc2 Type II
BCP
Business continuity Plan
Enterprise Security and Compliance process
Adhered to all or most security and compliance process as per Soc2 Type II
Disaster Recovery
Documented and Tested Disaster Recovery, will be done on demand for each customer as per the contract
Employee Background Check
Mandatory Background checks for all employees
Mandatory Annual Security Training
Mandatory Annual Security training for all employees and consultants
MFA
As per the industry standards
