SOC 2 refers to an auditing procedure which help service providers in securing and managing company data to protect the privacy and confidentiality of customer data. SOC 2 compliance is a minimal technical requirement for any security-conscious and technology-based businesses like Saas (Software as a Service) providers.
This procedure is developed by American Institute of Certified Public Accountants (AICPA) to define the criteria for managing customer data which are based on five “Trust Service Principles” – availability, confidentiality, privacy, processing availability and security.
Related insights and studies: