At Iteration X, we're proud to announce that we've obtained our SOC 2 Type II certification, which demonstrates our commitment to implementing robust controls to protect our users' data.
The audit was conducted by Insight Assurance, a leading global professional auditing firm. The audit affirmed that Iteration X’s information security practices, policies, procedures, and operations meet the SOC 2 standards for security, availability, and confidentiality. This report represents our commitment to security and is a result of months of hard work by our team.
Iteration X employs the best-in-class security practices and policies which ensure that our network is secured physically and virtually, and that our customers’ screenshots, data and information are both privates and secure.
We continuously aim to not just meet but also exceed industry standards and customer expectations for security controls by using a comprehensive set of security controls and processes to track and secure your information.
About SOC 2 Type II
SOC 2 Type II is a widely recognized auditing standard developed by the American Institute of CPAs (AICPA) that measures an organization's ability to protect user data based on five Trust Service Criteria (TSC):
Security
Focuses on an organization's ability to protect its systems and data from unauthorized access, both physical and logical. This includes measures such as access controls, network security, and data encryption.
Availability
Evaluates an organization's ability to ensure that its systems and services are available when needed. This includes measures such as redundancy, disaster recovery planning, and system monitoring.
Processing integrity
Measures an organization's ability to process data accurately and completely. This includes measures such as data validation, error handling, and transaction logging.
Confidentiality
Evaluates an organization's ability to protect confidential information. This includes measures such as data encryption, access controls, and employee training.
Privacy
Measures an organization's ability to protect personal information in accordance with applicable laws and regulations. This includes measures such as data classification, data retention, and data disposal.
Obtaining a SOC 2 Type II certification is a rigorous process that involves an independent audit of an organization's controls related to the TSC categories. The auditor evaluates an organization's controls to determine their effectiveness and whether they meet the criteria set forth by the AICPA.
At Iteration X, we've implemented robust controls across all five TSC categories to ensure that our users' data is protected. Our SOC 2 Type II certification demonstrates that our controls have been independently evaluated by Insight Assurance LLC and found to be effective in meeting the AICPA's criteria.
The Association of International Certified Professional Accountants (AICPA) runs independent audits looking at Systems and Organization Controls (SOC), specially the SOC 2 audit, for service organizations that hold, store, or process their users’ information, focusing on IT security and availability processes.
This is the most thorough SOC protocol and it attests not only to the adequacy of our processes and systems, but also to our operational effectiveness in adhering to those controls over time.
A snapshot of some controls covered by SOC 2
- Control Environment
- Communication and Information
- Risk Assessment
- Monitoring Activities
- Control Activities
- Logical and Physical Access Controls
- System Operations
- Change Management
- Risk MitigationSOC 2 is the most sought after security framework for growing SaaS companies.
We take our responsibility to protect our users' data seriously, and we will continue to prioritize data privacy and security as we grow and evolve as a company.
With our SOC 2 Type II certification, our users can be confident that their data is in good hands, and they can focus on using our software to capture issues and their full context on live websites and web apps without worrying about data breaches or unauthorized access.
Conclusion
Obtaining a SOC 2 Type II certification is a demanding process that requires a significant investment of time, effort, and resources. However, it's a crucial step in demonstrating an organization's commitment to data privacy and security.
At Iteration X, we're proud to have obtained our SOC 2 Type II certification from Insight Assurance LLC, and we will continue to strive for best-in-class privacy and security practices to ensure that our users can collaborate with their teams and clients with confidence.
