SOC 2 Kind 2 announcement!


We’re thrilled to announce the profitable completion of our System and Group Controls (SOC) 2 Kind 2 audit, carried out by A-LIGN, with no main findings recognized. You possibly can entry the report upon request at our Help Portal.

This milestone comes as a follow-up to our beforehand introduced SOC 2 Kind 1 audit again in April 2023. To supply a quick distinction, the Kind 1 audit exhibits that our safety processes and operations are well-established, whereas the Kind 2 audit confirms that we persistently adhere to those practices on a day-to-day foundation. Whereas the idea is easy in clarification, steady adherence to safety practices will be fairly sophisticated and require a company-wide dedication to cyber safety.

How does this profit our prospects?

The completion of this audit doesn’t result in any rapid modifications to our every day enterprise operations or the functioning of the Manychat platform. What it does accomplish is the verification that our processes, safety and infrastructure methods, each of their documentation and execution, successfully help the safety of buyer’s information.

Virtually talking, our workers adhere to multi-factor authentication (MFA), have need-to-know and least-privilege entry to particular methods, and endure periodic entry critiques to make sure that solely licensed people have acceptable entry for reputable causes. We keep thought vulnerability and patch administration processes. We implement code critiques and pull requests earlier than merging any code, together with automated deployment procedures. These practices not solely guarantee consistency but in addition decrease exterior interference and stop many frequent errors. Moreover, our logging and notification methods are in place to promptly detect and alert us on any suspicious actions that require our consideration. For a complete overview of all our safety and compliance controls, please discuss with our SOC 2 Kind 2 report.

Basically, the rules behind SOC 2 Kind 2 controls function sound pointers for designing and working methods usually. This audit affirms that our operational practices align with these basic rules.

What’s on the horizon?

Acquiring the SOC 2 Kind 2 report alongside our ISO/IEC 27001 certification is a major achievement. At present, we’ve a sturdy basis for pursuing different compliance certifications and audits, and our roadmap shall be influenced by the precise wants of our prospects. When you require compliance with ISO/IEC 27701, GDPR-CARPA, NIST CSF, or another particular certifications, please don’t hesitate to succeed in out to us upon request by means of the Help Portal.

You already voted!

The contents of this weblog had been independently ready and are for informational functions solely. The opinions expressed are these of the creator and don’t essentially mirror the views of ManyChat or another occasion. Particular person outcomes could range.