SOC 2

acronym

governance & riskcloud

Stands for: System and Organization Controls 2

An auditing standard that reports on how well a service organization protects customer data.

A SOC 2 report evaluates controls against trust principles, security, availability, confidentiality, and more, and is commonly requested by customers before trusting a vendor with their data. It is evidence of process, not a one-time certificate of perfection.

Also known as: soc 2, soc2, service organization controls

All glossary entries