Your sensitive data deserves to be safe in the cloud. SOC compliance certifies that your data in Sync is stored in an effective, secure, and regulated way.
System and Organization Controls (SOC) is the most widely-recognized framework for auditing security best practices in a standardized way. It certifies that comprehensive information security controls are in place, meeting the American Institute of CPA’s (AICPA) Trust Services and Integrity Principles.
Since SOC reports are completed by a trusted independent third party, they are a reliable and regular evaluation of the critical security and protection assurances given by an organization. All Sync plans include SOC compliance.
A SOC 2 report is a detailed internal review of an organization’s data security, availability, processing integrity, confidentiality, and privacy to ensure best practices. SOC 2 Type 1 is evaluated over a single point in time, whereas Type 2 is over a period of time. Both include a thorough description of Sync’s processes and controls to protect your data as well as the auditor’s opinions and tests on each operation and control. Sync is SOC 2 certified, and a SOC 2 report can be made available on request.
A SOC 3 report is a general-use executive summary version of a SOC 2 report which includes the auditor’s opinions and details.
Download SOC 3 report here.
It means that you can review Sync’s security practices and controls to verify how your data is processed and stored. It also signals that Sync is enterprise-ready, ensuring your organization can scale with Sync while remaining safe, secure, and compliant in the cloud at all times.
This is great news for businesses operating in highly regulated industries, including government, healthcare, and education. SOC goes a long way towards validating your decision to choose Sync as part of your data governance plan.