Ever since Swarmia was founded in November 2019, protecting our customers’ data has been a priority for us.
After all, there’s no way we would be able to work with modern engineering organizations like Outreach, Pleo, and Wolt if we couldn’t prove that we have all the necessary controls in place to protect their interests and data.
That’s why we’re excited to let you know that as of December 15, 2022 Swarmia is SOC 2 Type 2 compliant.
System and organization control (SOC) 2 is an audit designed to ensure that service providers, including SaaS companies like Swarmia, have the internal controls in place to securely manage data and protect the interests and privacy of their customers. To obtain SOC 2 certification, an organization must meet certain requirements and undergo an independent audit by a third-party auditor.
SOC 2 was developed by the American Institute of Certified Public Accountants (AICPA). It sets criteria for managing customer data according to the five trust service principles: availability, confidentiality, processing integrity, privacy, and security.
While the SOC 2 Type 1 certification we obtained in November 2021 assessed our security practices at a specific point in time, SOC 2 Type 2 assesses how effective those controls are over time by observing operations for several months.
The successfully completed SOC 2 Type 2 audit demonstrates our ability to protect our customers' information and provide secure and reliable service.
Going forward, we’ll continue to follow SOC 2 best practices, including conducting regular internal and external audits, implementing strong security policies and procedures, and regularly monitoring and testing controls.
In addition to completing the SOC 2 Type 2 audit once a year, we undergo internal security audits twice a year, hold regular trainings to all Swarmia employees, and conduct a third-party security audit at least once a year.
If you’re a Swarmia customer interested in getting access to the SOC 2 Type 2 report, simply reach out to your Customer Success Manager. If you’re evaluating whether Swarmia might be the right solution for you, you can email us to request your copy of the report.
For more details about our commitment to security and privacy, visit our security page.