SOC 2

SOC 2 evaluates controls for the trust services criteria (security, availability, confidentiality, processing integrity, privacy). Common proof for B2B security due diligence.

Complements ISO 27001 and privacy frameworks like GDPR and CCPA. A Type II report covers operating effectiveness over a period.