Emailable is now SOC 2 Type II Certified
July 10, 2024
1 min read
This milestone underscores Emailable’s dedication to maintaining the highest standard of data security, availability, processing integrity, confidentiality, and privacy. SOC 2 is the trusted standard for service organizations, especially within the tech sector.
What is SOC 2?
SOC 2 (Systems and Organization Controls 2) is the premier framework for managing and protecting customer data within the service industry.
They are highly regarded for their comprehensive and rigorous approach to evaluating five core principles:
- Security - Ensures that all customer information is protected against unauthorized access and breaches
- Availability - Confirms that all systems are reliable and available for use as agreed upon with customers
- Processing Integrity - Verifies that data processing is complete, accurate, timely, and authorized
- Confidentiality - Maintains policies and procedures to manage confidentiality risks, restrict access to authorized personnel, encrypt data, and regularly monitor and audit existing controls
- Privacy - Guarantees that confidential information is handled with the utmost care, in line with Emailable’s privacy commitments
SOC 2 Type 1 vs SOC 2 Type 2
There are two types of SOC 2 that companies can be certified for: Type 1 and Type 2. It’s important to distinguish the difference between each to see if they meet your business requirements.
| SOC 2 Type 1 | SOC 2 Type 2 | |
|---|---|---|
| Summary | Evaluates an organization’s cybersecurity controls at one single time | Evaluates an organization’s cybersecurity controls consistently over a period of time |
| Audit Window | Once every unspecified period | Consistently every 3, 6, or 12 months |
| Reporting Insight | Minimum insight into security posture | Comprehensive insight into security posture |
| Purpose | Often used as a preliminary report to demonstrate initial design and implementation compliance | To demonstrate how company will commit to strengthening all facets of cybersecurity on a consistent and reliable basis |
| Certification Timeline | Shorter | Longer |
Why did we choose SOC 2 Type II?
Businesses often choose to be SOC2 Type 1 certified as it’s faster, easier, and cheaper to demonstrate compliance. Emailable however chose the more comprehensive Type 2 route, because we believe that’s the level of protection our customers deserve.
We are dedicated to having our policies reviewed on consistent basis to further demonstrate why we are the most secure and reliable tool in our industry.
View Compliance Documents
You can view all our latest compliance documents in our new Trust Center. Please contact us directly if you would like any additional information.