Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

Blogs

Events

Glossary

Guides and reports

What is SOC 2 compliance?

‍

SOC 2 defines criteria for managing customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality and privacy. SOC 2 compliance was developed by the American Institute of CPAs (AICPA).

‍

SOC 2 compliance reports are unique to each organization. In line with specific business practices, each designs its own controls to comply with one or more of the trust principles. These internal reports provide you (along with regulators, business partners, suppliers, etc.) with important information about how your service provider manages data.

‍

There are two types of SOC compliance reports:

‍

Type I describes a vendor’s systems and whether their design is suitable to meet relevant trust principles as of a specified date
Type II details the operational effectiveness of those systems throughout a specified period.

‍

You may want to pursue a SOC 2 report if you handle customer data and/or you work with larger enterprises who will want to ensure that you are a secure vendor.

‍

Related Terms

Additional resources you might like:

SOC 2

Vanta events | Vanta

Live Demo: Automating Compliance for SOC 2, ISO 27001, and More

Discover how automation can transform your compliance efforts into a streamlined, efficient process. Join the live demo to see it in action and get your compliance questions answered.

Compliance

Vanta events | Vanta

Demystifying the EU AI Act

Discover how Vanta can streamline your journey through this new regulatory landscape, ensuring your AI operations are secure and future-ready.

Compliance

Blog

The founders guide to accelerating growth with compliance in ANZ

Proactively investing in security compliance can help ANZ startups unlock bigger deals and build trust with customers long before compliance becomes mandatory.

Compliance

Vanta events | Vanta

Live Demo: Automating Compliance for ISO 27001, GDPR and more with Vanta

Unlock the power of automated compliance and streamlined security workflows—join our live demo to see how Vanta can save you time, money, and help build trust with your customers.

Compliance

Vanta events | Vanta

Live Demo: Automating Compliance for SOC 2, ISO 27001, HIPAA, and More

Discover how Vanta’s automation tools can simplify compliance for SOC 2, ISO 27001, HIPAA, and more, helping you build a stronger security foundation with ease.

Compliance

Vanta events | Vanta

Live Demo: Simplify ISO 27001 and SOC 2 Compliance to Fuel Growth

See how Vanta can simplify and automate your compliance efforts, helping you scale your business while building trust with customers!

Product updates

Vanta events | Vanta

Trust is a Team Sport

Jeremy Epling (CPO at Vanta) introduces new product capabilities designed with teamwork in mind. Watch to see how Vanta can help you collaborate easily with your extended team of employees, vendors, auditors, and customers—and win together.

Compliance

Vanta events | Vanta

Live Demo: Automate compliance to fuel your startup's growth

Discover how automating compliance can streamline processes, save time, and fuel your startup’s growth.

ISO 42001

Vanta events | Vanta

Compliance for AI in Europe: Preparing for Emerging AI Laws and Regulation

Explore how ISO 42001 and the EU AI Act help your company stay compliant, secure, and ahead of evolving AI regulations with expert insights and practical strategies.

Follow us

What is SOC 2 compliance?

Related Terms

Additional resources you might like:

Additional resources you might like:

Get compliant and build trust—fast