We’re Now SOC 2 Type 2 Compliant, Keeping Sift Science Customers Safer Than Ever
By Sift /
9 May 2016
Thousands of websites and mobile apps across the globe trust Sift Science to help them prevent fraud, abuse, and other malicious digital behavior. Just as our customers have an obligation to protect data about their users, so do we. When data hits our centers for processing and analysis, it’s incumbent on us to deliver an exceptional product – and the safety and security of our customers’ data is a critical part of that product. That’s why we’re excited to announce that we’ve successfully completed our SOC 2 Type 2 audit!
Even before the SOC 2 assessment, Sift Science was working from a solid foundation: we already had a culture of integrity and security, strong access controls, regular third-party security assessments, and robust code reviews. But over time, we’ve grown in step with our customers and have seen increasing interest in third-party opinions and validation of our security controls. It became apparent that we should formalize our commitment to data security.
Building on our strong foundation, we added some important security controls as part of our SOC 2. We encrypted our data at rest, introduced even stronger access controls, and wrote and complied with our first set of cross-company Information Security policies and procedures. It’s great to have these important measures in place, and we’re excited to continue strengthening our data protection practices.
At the end of the process, Coalfire – a leading third-party auditor for Fortune 1000 organizations and well-respected SaaS businesses like Square, IBM, Heartland Payment Systems, 3M, and Priority Payment Systems – attested to our compliance with the SOC 2 control framework. We’re proud to join the same compliance framework as other cloud security leaders, such as New Relic, Twilio, and Hubspot.
We’ll be keeping you in the loop about any additional security updates on our new siftscience.com/trust page. And if you have any questions, we’re always happy to help – just email email@example.com.