Your Data is Safer than Ever
TLDR; Dealtale is now SOC2 Type II compliant.
Security is a prime concern of every organization. Making sure that your data is safe and secure at the hands of vendors and partners is also key.
Now, our customers can rest assured that we comply with the leading, most demanding requirements. I’d like to introduce our new certification: SOC 2 type II by AICPA auditor.
Though SOC 2 type II is not a requirement for being considered ‘safe’, we consider each record in our data as classified and important. We took it to the next stage and applied all the required layers to certify Dealtale.
We make the utmost effort that your data is secured, private, available and being tested for integrity.
SOC (Service Organization Control) 2 certificate is a voluntary compliance standard that assesses the procedures and control processes in an organization. It simply sets an international standard for collecting and exchanging information.
There are two types of SOC 2 audit reports:
Type I – describes the company’s systems and controls and the suitability of the design of those systems
Type II – checks the operating effectiveness of systems described in the Type I report
While General Data Protection Regulation (GDPR) is a gold standard for privacy compliance, SOC 2 holds the gold standard crown for security compliance. It’s especially important for companies that process any type of personal data.
An external auditor awards the SOC 2 certification after verifying the company’s compliance with 1 or more of the 5 trust service principles:
- Processing integrity
How we support our clients in privacy-compliance:
Our tool was designed according to “privacy by design” principles. It means Dealtale supports you and your end users’ privacy by:
- Hiding sensitive data (wireframe mode, masking fields)
- Asking you to sign a Data Processing Agreement (DPA) with us before you identify your users via API
- Anonymizing personal data or limiting its collection to the minimum when required
What does the SOC 2 certification mean for your business?
As a SaaS company, information security is of key importance. SOC 2 audit ensures that we securely manage your data and protect your interests. It also refers to the privacy of your end-users.
The certification shows that companies of all sizes can trust our processes and controls around:
- Data security and privacy (access controls, endpoint protection, infrastructure)
- Software development (change management, vulnerability testing, disaster recovery plan (DRP), Secure Software Development Life Cycle (SSDLC))
- Corporate governance (laws and regulations compliance, confidentiality, HR management)
We want to allow our clients to grow in a secure and in a private way. On top of all of the clauses I take care personally for our customers’ data. And if tomorrow would be SOC 2 type III report I’ll be first to comply.
Adi Mizrahi, CTO & Co-Founder at Dealtale