Aqua Voice is SOC 2 compliant

This is a big step for security, procurement and teams. Our third-party auditors have informed us that we meet the criteria needed to be certified as SOC 2 Type II compliant. Making it easier to get onboarded to Aqua Voice across your company.

SOC2 is an auditing standard that tests for strong security controls

SOC 2 or Service Organization Controls 2 is a framework that is governed by the American Institute of Certified Public Accountants (AICPA). With a SOC 2 audit, an independent service auditor will review an organization’s policies, procedures, and evidence to determine if their controls are designed and operating effectively. A SOC 2 report communicates a company’s commitment to data security and protection of customer information.

Security has always been one of our core values

By becoming certified on our SOC 2 compliance, we reaffirm this commitment to our customers trust. This is a major milestone towards showcasing our overall security posture. With increasing cybersecurity threats and data breaches, it is paramount that organizations prioritize information security and the protection of their systems and data. By undergoing a SOC 2 audit, our controls and processes were validated by a third-party who attests to the functioning of the controls relevant to our application. 

Compliance Partners

Vanta 

We partnered with Vanta, the leader in the Trust Management space, to help us automate the collection of our audit evidence. Vanta provides us with the strongest security foundation to protect our customer data.

Advantage Partners 

Our audit firm, Advantage Partners, was extremely helpful in creating a seamless audit experience. With their guidance and support, we were able to achieve SOC 2 compliance in a swift, efficient manner.

Lessons we learned 

Compliance is not a one size fits all solution, it's an ongoing improvement. We're proud of this step in the right direction, but we're aware that there is more ways to improve and build trust with our customers and stakeholders. Security is a continuous project that should be at the core of an organization.

We've learned to decide which internal stakeholders are needed for which policies, procedures and engineering tasks, and through this we've learned that it's easier to implement these policies earlier rather than later.

To achieve this, finding the right partners to guide us through this process has been key, which we have by working with the firm Workstreet.

Trust Center

See our policies and controls, read about our subprocessors and download our SOC2 report here.

We're hiring!

We're continuing to invest in security, and we're hiring for a Security Engineer to help us. So If you want to build safe, secure tools that help humans work better, apply here