SOC 2 Type 2 Compliance
All Immedion data center facilities are SOC 2 Type 2 compliant under the guidelines created by the American Institute of Certified Public Accountants (AICPA). SOC 2 Type 2 compliancy is often viewed as the standard for security and availability of service providers. The controls and procedures outlined by the AICPA for SOC 2 Type 2 compliancy are necessary for additional compliance certifications such as HIPAA and PCI.
Immedion first obtained global SOC 2 Type 2 compliancy in March 2015 based on the Trust Service Principles (TSP) of Security and Availability.
The Trust Service Principles establish and validate:
- Security: A service provider’s system is protected both logically and physically against unauthorized access.
- Availability: The system is available for operation and use as committed or agreed upon.
Our SOC 2 reports are available to customers with a signed NDA. We are always happy to provide the necessary reporting to assist customers with their own audits.