skip to Main Content
SOC2-graphic

System and Organization Controls

Our System and Organization Controls (SOC) Reports are independent third-party examined reports that demonstrate how our company achieves key compliance controls and objectives.

These reports are intended to provide our customers with detailed information and assurance about the controls relevant to security and the availability of the systems that Enable Data uses to process users’ data and maintain the confidentiality of the information.

What is a SOC 2 Report

Increasingly, businesses are outsourcing basic functions such as data storage and access to applications on cloud service providers (CSPs) or other service organizations. In response, the American Institute of Certified Public Accountants (AICPA) has developed the Service Organization Controls (SOC) framework, a standard for controls that safeguard the confidentiality and privacy of information stored and processed in the cloud. This aligns with the International Standard on Assurance Engagements (ISAE), the reporting standard for international service organizations.

A SOC 2 audit gauges the effectiveness of a CSP′s systems based on the AICPA Trust Service Principles and Criteria. An Attest Engagement under Attestation Standards (AT) Section 101 is the basis of SOC 2 and SOC 3 reports.

At the conclusion of a SOC 2 audit, the service auditor renders an opinion in a SOC 2 Type 2 report, which describes the CSP′s systems and assesses the fairness of the CSP′s description of its controls. It also evaluates whether the CSP′s controls are designed appropriately, were in operation on a specified date, and were operating effectively over a specified time period.

If you have additional questions, or would like to request a copy of our latest SOC 2 report, please contact us at [email protected]

Back To Top