We’re SOC 2 Compliant and Here’s Why It’s an Important Milestone

What is SOC 2 compliance?

SOC 2 is a voluntary compliance standard aimed at SaaS companies that store customer data in the cloud. It specifies how an organization should manage customer data. The compliance guidelines set by AICPA (American Institute of Certified Public Accountants) ensure services are secure, available, and confidential and that information security best practices are in place.

‍

What does this mean for Reco?

In short, it means our people, processes and systems are operating securely and effectively. But more importantly, it means we meet the stringent standards of the SOC 2 criteria. As a startup, it is extremely important that we build our information security systems robust and reliable right from the very start. Our official SOC 2 report confirms that we have taken no shortcuts in building our product and that there is complete oversight across all areas related to our information security.

‍

What does this mean for our customers?

Our customers can place full trust in the security of our product and rest easy knowing that we are continuously monitoring and reviewing our security statuses. Our SOC 2 compliance assures our customers that their sensitive information is highly protected and that they are partnering with a company that is committed to the highest security standards. It also shows our customers that we have chosen to take our information security seriously from day one.

‍

Thank you to Scytale, our SOC 2 partner

We would like to thank the team at our SOC 2 partner, Scytale, for their expert guidance and support throughout the process of gaining the certification. Scytale’s SOC 2 automation tool reduced the heavy compliance workload, and streamlined the SOC 2 readiness process, saving us considerable time and effort in preparing for audit. The team at Scytale also provided valuable guidance on best practice, systems, and company oversight, all of which made the whole experience smoother than we expected.