This document defines SOC 2, its purpose, and contains available reports for customer referral.
SOC 2 is an auditing procedure that ensures that service providers securely manage customer data to protect the interests of the customer and the privacy of their clients. For security-conscious businesses, SOC 2 compliance is a minimal requirement when considering a SaaS provider.
It defines criteria for managing customer data based on five trusted service principles:
- Security
- Availability
- Processing integrity
- Confidentiality
- Privacy