09 February, 2023
Y42 is excited to announce that we’ve undergone a System and Organization Controls (SOC) examination performed by BARR Advisory, P.A., and successfully obtained a SOC 2 Type 2 certification.
Being SOC 2 Type 2 certified demonstrates our commitment to upholding the highest standards of data security and to ensuring that our customers continuously trust us. This report guarantees that we process and manage customer data following the American Institute of CPAs’ (AICPA) trust principles of security, availability, and confidentiality.
Not only is Y42 SOC 2 Type 2 certified, but we’re also GDPR-compliant. What’s more, no customer operating data is stored inside our system — it is only stored in the customer’s data warehouse.
The following are some of our security commitments at Y42:
Data encryption and data transmission encryption
Data retention procedures
System activity log management
Access control procedures
Company-wide password policy
Continuous vulnerability scanning and system monitoring
Vendor management program
Restricted firewall access
Encryption of portable media
Deletion of customer data upon leaving
Encrypted remote access
Production data backups
Confidentiality and non-disclosure agreements with employees, partners, and third parties
All of our system policies and procedures are thoroughly documented in our contracts with customers, as we consider transparency to be a guiding principle of our customer relations.
Read the full Y42 Report on Controls at a Service Organization Relevant to Security, Confidentiality, and Availabilityhere.