Commitment to Security: Announcing SOC 2 Compliance

Written by Anna Burman

We are proud and happy to announce that we have received a SOC 2 Type 2 attestation report on January 24, 2020. The assessment by an external party and their report provides evidence of our dedication to provide our customers with a secure high-quality service.

Good services are trustworthy, secure and reliable. Which is why 84codes, the company behind CloudKarafka, takes the protection of our customers’ data very seriously. Our service has the highest standard of security along with robust processes you can count on.

Thus, we are proud and happy to announce that we have received a SOC 2 Type 2 attestation report on January 24, 2020. The assessment by an external party and their report provides evidence of our dedication to provide our customers with a secure high-quality service.

What is SOC 2 compliance?

SOC 2 is an auditing procedure developed by the American Institute of CPAs (AICPA), which ensures that a business is handling customer data securely and in a manner that protects the organization and the privacy of its customers.

The goal is to ensure that the organization and its cloud-based systems are designed in a way that guarantees security, availability, processing integrity, confidentiality, and privacy of customer data.

Source: https://www.imperva.com/learn/data-security/soc-2-compliance/

SOC 2 creates a high standard for customer data protection by:

  • Requiring companies to establish and follow data security policies and procedures for their cloud-based data systems.
  • Performing assessments to ensure companies are complying with SOC 2 data security policies and procedures.
  • Continuously updating compliance and security standards to reflect the current challenges of cloud data security threats.

To become SOC 2 compliant, a company has to be audited by an independent Certified Public Accountant (CPA). BARR Advisory, an American CPA firm, has audited 84codes.

What is the Value of SOC 2 Compliance for a SaaS-Company?

The most common concern among our customers has been focused on the security and privacy of their data. As a SaaS-company, we have a great responsibility when handling our customer’s data; therefore, we want to follow industry best practices regarding how we work with security.

This is precisely what SOC 2 does - it provides organizations the chance to incorporate best practice procedures into their way of working in every part of the organization, which provides great value both to the organization itself and its customers.

For us at 84codes, SOC 2 has improved our procedures throughout all parts of the organization, from recruiting to business continuity planning to change management when deploying code. We are confident that SOC 2 compliance has made us more robust and reliable both now and for the future.

Security and Compliance Going Forward

Thanks to data privacy regulations such as GDPR, 84codes has already had vast experience in updating our internal Security and Compliance Program and making it robust. SOC 2 has been a great complement to our existing program by taking a holistic approach to security.

IT security and compliance are continuously evolving, with new threats and challenges on a daily, sometimes hourly, basis. Thus, we are determined to keep conducting a SOC 2 Type 2 audit on an annual basis, and always give priority to providing our customers with a secure and dependable service.

If you have any questions or want to receive a copy of the SOC 2 report, please send an email to compliance@cloudkarafka.com.

CloudKarafka - Industry Leading Apache Kafka as a Service