Deepgram received a SOC 2 Type II "clean bill of health" from Cyberguard Compliance. Their six-month audit of Deepgram's security, availability, and confidentiality found no exceptions to the SOC 2 Type II industry standards as defined by the American Institute of Certified Public Accountants (AICPA). Their audit was conducted from July to December 2021.
The SOC 2 Type II report is the gold standard in SOC audits and provides customers the confidence that a SaaS company has security controls in place, monitors the controls, and optimizes security for their customers. We've also previously achieved SOC 2 Type I certification. Type I describes a vendor's systems and whether their design is suitable to meet relevant trust principles, while Type II details the operational effectiveness of those systems.
What does SOC 2 mean to our customers and prospects?
The SOC 2 certifications mean that an independent auditor has examined our systems and processes and determined that we have best practices in place for securely managing data to protect the interests and privacy of our customers. We have been a trusted partner for many SaaS and Enterprise companies and this certification confirms our systems are using industry best practices for security, confidentiality, and privacy. If you are engaged with any SaaS company, they should meet SOC 2 Type I certification requirements at a minimum to ensure their customer's data is secure, available, and private. SOC 2 has five main principles:
Security - Best practices are implemented to prevent unauthorized access to a company's systems.
Availability - A company can meet its service level agreements (SLAs) for accessibility.
Confidentiality - The use, access, and protection of information as stipulated in customer contracts can be met.
Process Integrity - The company and its systems can achieve their stated purpose.
Privacy - The disclosure and disposal of data are in line with the privacy notice of the company and the generally accepted principles of the American Institute of CPAs.
If you need a copy of our SOC 2 Type I or Type II attestation or report, please contact us at firstname.lastname@example.org. This report is valid until February 2023. You can also read more about our data privacy compliance.