SOC 2 compliance is a part of the American Institute of CPAs ( AICPA)’s Service Organization Control reporting platform. Its aim is to certify that software is set up in a way that assures security, availability, processing integrity, confidentiality, and privacy of customer data. SOC 2 is both a technical audit and a requirement that comprehensive information security policies and procedures be written and followed.
Smartwaiver received its SOC 2 Type II certification in 2022 from a 3rd party auditor. This certificate provide assurance that Smartwaiver’s service commitments and system requirements were achieved based on the trust service criteria relevant to Security, Availability, Process Integrity, Confidentiality, and Privacy principles set forth in TSP 100, 2017 Trust Services Principles and Criteria for Security, Availability, Process Integrity, Confidentiality, and Privacy (AICPA, Trust Service Criteria).