Security is a major requirement while dealing with SAAS companies across the globe. As a service provider to leading companies globally YellowAnt is fully committed to provide the best in class security compliance, in lieu of that we on May 31, 2022 have become Soc2 Type II compliant. It is integral to maintain our customers’ trust by keeping their data safe and secure.
The SOC (Service Organization Controls) 2 Type 2 examination was conducted by an independent, third-party accounting and auditing firm, which evaluated YellowAnt’s processes, procedures, and controls for security and availability of our incident management platform, Zenduty.
Why be SOC 2 compliant?
SOC 2 is developed by the American Institute of CPAs (AICPA), it defines criteria for managing customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality and privacy.
When applying for SOC 2 certification, companies can choose between Type 1 or Type 2. Type 1 is a “snapshot in time,” which reports that a company had appropriate controls in place at a specific point in time.
While a Type 2 report, certifies that a company has demonstrated continued adherence to appropriate controls over a period of time. Security is a collective responsibility, we at YellowAnt for our product Zenduty took a holistic approach in achieving the highest security compliance with every team contributing to the process, i.e., Engineering, Security, and Operations. These teams came together to look at our security processes and platform availability comprehensively to ensure we had the appropriate controls and processes in place for our SOC 2 Type 2 examination.
From the global perspective: When you google “cybersecurity”, you’ll find a trending news item on data breach, data leakage, privacy concerns, security breach etc on any given day so it was essential for us to improve our security standing and secure the Soc 2, Type 2 certification.
From Zenduty’s perspective: Reliability is a sum of uptime, support, privacy and security. As a company that helps others achieve reliability in the market, being Soc 2 compliant was part of our fundamental values. The Soc 2, Type 2 compliance is an extension of GDPR guidelines, ISO certification in the direction of conquering the secure mountain where data protection is at the peak. This rigorous scrutiny of our security practices furthers our commitment to protect our customers and add to the value they place in us.
Vendors and partners with compliance requirements may request and leverage Zenduty’s SOC 2 Type 2 report as part of their compliance strategy.