SOC Standard 2
Security, accessibility, integrity, confidentiality and privacy
Service and Organization Controls 2
Service and Organization Controls 2 (SOC 2) is an assessment of procedures and control processes in an IT organization, and an international standard for collecting and exchanging information. This standard was established on behalf of the American Institute of Certified Public Accountants (AICPA). It defines data management criteria across five key areas: security (both physical and logical), availability, processing integrity, confidentiality, privacy.
What is SOC 2?
SOC 2 is an audit procedure that results in a report detailing how your service provider manages your entrusted data.
SOC 2 covers of two reports:
- Type 1 – describes the information security management system and assesses its relevance against standard checkpoints.
- Type 2 – assesses whether the information security management system actually works (describing evidence how security measures work for a specific period of time, minimum 6 moths).
What Organisations are SOC2 Standards for?
Service and Organization Controls 2 is an independent opinion about the standards at Beyond.pl Data Center, your current or future service provider. It is not mandatory to evaluate procedures and processes but as a Data Center, we want to provide data center services at the highest level and confirmed to our customers through the positive opinion of independent experts.
SOC 2 standards apply to companies and organisations that process any type of sensitive customer data. Examples of such operations are:
- financial services
- banks and financial institutions
- insurance companies
- sales and retail businesses
- online stores and ecommerce websites
- production companies
- SaaS services