At Rocketlane, we’ve always focused on ensuring the best data security practices at our end—running background checks during hiring, ensuring best practices for software development, using monitoring tools that ensure compliance, and more—our latest SOC 2 Type 1 compliance makes our commitment to a robust data security official. 

What is SOC 2 Compliance? 

Service Organization Control 2 is an IT security auditing program from the American Institute of Certified Public Accountants (AICPA) that determines if a company’s security protocols and practices are strong enough to protect user data. This ability to manage user data is assessed based on the five ‘trust service’ principles of: 

• Processing integrity: Checking if the company’s systems can process information accurately with adherence to the best data processing and quality assurance protocols. 
• Availability: Assessing if users can access the system as expected by assessing factors such as network performance monitoring and incident response.
• Security: Verifying that the systems are protected against unauthorized access resulting in data loss, data theft, system abuse, etc. 
• Confidentiality: Ensuring that the organization has restricted access and disclosure through implementing processes for data encryption and access control. 
• Privacy: Assessing if systems collect, store, and process user data containing  Personally Identifiable Information (PII) such that it is protected from unauthorized access. PII processing aligns with the AICPA’s Generally Accepted Privacy Principles and the organization’s own privacy policy.

Why SOC 2 Compliance and data security matters

We understand how critical trust is to building long-lasting customer relationships. When our customers use Rocketlane to build delightful onboarding journeys for their customers, we want security concerns to be the last thing on their minds.  The SOC 2 Compliance is one way to help our customers inspire trust and confidence in their customers. 

 For SaaS companies, the SOC 2 certification is the gold standard for security compliance. Though SOC 2 compliance was a request that came up most often in our conversations with some of our bigger customers, our promise of quality and security remains the same across company sizes and domains. 

With Rocketlane, our customers are assured of a secure and compliant platform built on the best practices and protections to ensure their data is always safe. 

What does this mean for our customers?

When customers trust Rocketlane with their data and that of their customers,  we want to honor that trust with a commitment to high standards of quality and compliance. We are committed to adhering to the best practices in data security and cloud storage and monitoring all of our software for vulnerabilities to keep our customers’ data safe. 

This SOC 2 compliance guarantees that as an organization, we will continually monitor customer data and alert our users in the case of breached systems or compromised data.
We want our customers to rest assured that their data is safe with us to help them focus on what matters: getting their customers to succeed. 

Your data is safe with us 

Given that our customers trust us with some of their most important data, the SOC 2 certification is a testament to the fact that we are committed to ensuring that: 

1. Our software development and internal company practices follow rigorous standards of security compliance 
2. Customer data is protected with controls, and that assess, minimize, and eliminate risks and vulnerabilities
3. We use tools to continuously monitor our compliance with SOC 2 requirements
   

From our end, this latest SOC 2 Type 1 certification is an assurance that we are committed to the best practices and protections to ensure that customer data is always safe. 

We feel privileged that our customers trust us with their data, and we are committed to meeting the best data security and privacy standards for them. We hope these updates help our customers rest easy knowing that their data is secure with us always.