{"id":4567,"date":"2022-12-07T12:54:30","date_gmt":"2022-12-07T17:54:30","guid":{"rendered":"https:\/\/ionic.io\/blog\/?p=4567"},"modified":"2022-12-08T12:06:25","modified_gmt":"2022-12-08T17:06:25","slug":"ionic-achieves-soc-2-type-1-compliance","status":"publish","type":"post","link":"https:\/\/ionic.io\/blog\/ionic-achieves-soc-2-type-1-compliance","title":{"rendered":"Ionic Achieves SOC 2\u00ae Type 1 compliance"},"content":{"rendered":"

Ionic is proud to announce that we have completed our SOC 2 examination and are SOC 2 Type I compliant. This is the latest achievement in our ongoing commitment to industry-leading security for our users and customers. Receiving a compliant SOC 2 report means that Ionic is securely managing 3rd party data to protect information and ensure privacy for customers of Appflow<\/a>, our mobile CI\/CD solution.<\/span><\/p>\n

<\/p>\n

What is SOC 2<\/h2>\n

System and Organization Controls (SOC) 2<\/span><\/a> is a standard established by the <\/span>American Institute of Certified Public Accountants<\/span><\/a> (AICPA) to test an organization\u2019s controls for information security and privacy. It is the industry standard for companies and products that use the cloud to store data. In addition to validating strong processes to protect against data breaches and security incidents, SOC 2 is required by many enterprises evaluating vendors and tools like Ionic.<\/span><\/p>\n

A SOC 2 Type I audit specifically tests the design of a compliance program and compliance at a point in time. This involves defining and documenting security controls and providing evidence that controls are functioning properly. A SOC 2 audit must be completed by a CPA firm.<\/span><\/p>\n

By pursuing and achieving SOC 2 Type I compliance, Ionic is in line with top organizations in the industry and has demonstrated a commitment to security. Appflow customers can rest assured that we have completed a critical step in establishing and ensuring safety controls.<\/span><\/p>\n

The Road to SOC 2<\/h2>\n

Our Partner<\/h3>\n

Choosing a vendor to complete the SOC 2 examination process is a critical decision. Ionic has partnered with <\/span>Laika<\/span><\/a>, a leading compliance platform that provides end-to-end support, so that we have a trusted partner every step of the way. Working with Laika, Ionic completed a thorough review of our systems, controls, policies, vendors, as well as testing and auditing to ensure compliance with the standards set forth by the AICPA.<\/span><\/p>\n

Our Process<\/h3>\n

Completing the SOC 2 examination is a rigorous process that audits against five Trust Services criteria:\u00a0<\/span><\/p>\n