Stomio is proud to announce it has successfully completed the System and Organization Controls (SOC) 2 Type I examination in recognition of its commitment to information security. Developed by the American Institute of CPAs (AICPA), SOC 2 (System and Organization Controls) defines criteria for managing customer data based on five “trust service principles” — security, availability, processing integrity, confidentiality, and privacy.

‍

A SOC 2 examination provides organizations with a report on an organization’s internal controls and how it protects customer data and sensitive information. It is the standard for data security among digital companies in the U.S.An independent auditor, Insight Assurance, conducted the detailed examination via Vanta. Through this process, Stomio demonstrated its adherence to data security standards developed by the American Institute of Certified Public Accountants (AICPA).

‍

With its SOC 2 recognition, Stomio not only protects the safety of its customers’ data today but demonstrates that it has set the right standards in place for the future.

‍

To earn SOC 2 certification, Stomio completed the following over a 2-month period:

• Assessment of the design and operating effectiveness of Stomio’s controls.
• Thorough examination of security of vendors and third parties.
• Defined policies to ensure continued protection for customers and employees.
• Implementation of critical security and policy controls to insure compliance of SOC2 requirements.

‍

Stomio is excited to be taking this important step to further its data protection practices.