SOC It To Us
The Datapath team is in SOC season. This means that a team at Datapath from every department is working on documentation to ensure we have proper controls in place for our processes, procedures, how we handle data, and even verifying the vendors we use to ensure their practices are secure and documented.
The SOC process stands for System and Organization Controls (SOC) and is verified by specialized CPA firms. These firms use a framework called the Trust Services Criteria to test every written control. This process takes months to complete to test all the controls produced by our team. The consultants ensure that Datapath meets requirements in five different categories: security, availability, processing integrity, confidentiality, and/or privacy.
There are four different types of SOC reports (SOC 1, SOC2, SOC3, and SOC for Cybersecurity). Since Datapath handles data, and, is a third party provider for organizations, we are audited under the SOC2 report which covers the five categories mentioned above and focuses on operational risks.
Why does all this matter? Datapath doesn’t just want to be another technology provider, we want to be the best provider. With the rising risk organizations face with cyber security, providers like Datapath are a target for hackers since we have access to a large number of environments.
Having our processes, operations, and security reviewed by a third party gives our team and the organizations we serve the assurance that we’re reviewing and improving our processes regularly. Datapath continues to have a “Security-First” mindset and maintaining a SOC2 certification is our investment in continuing to be a security leader.
We believe this process is vital to any organization that is concerned about the protection of their data, if you would like to learn more about the process reach out to us at hello@mydatapath.com or ask your dedicated Datapath Account Executive.