SOC 2
System and Organization Controls 2 · soc2 · soc 2 type ii
AICPA audit standard covering security, availability, processing integrity, confidentiality and privacy. Type I = controls designed; Type II = controls operating effectively over ≥6 months.
SOC 2 is the AICPA's Trust Services Criteria audit framework for service organisations. Reports are scoped to one or more of the five criteria (Security is mandatory; Availability, Processing Integrity, Confidentiality, Privacy are optional). Type I is a point-in-time design review; Type II is an operating-effectiveness audit over typically 6–12 months and is the version enterprise buyers usually require.
V5 Ultimate Cloud operates against SOC 2 Type II controls (Security, Availability, Confidentiality). The on-prem deployment inherits the customer's own SOC 2 / ISO 27001 boundary.
Free trial, no credit card, onboard in days, not months.