Read or buy our book, Build: Elements of an Effective Software Organization →

Swarmia is now SOC 2 Type 2 compliant

Ever since Swarmia was founded in November 2019, protecting our customers’ data has been a priority for us.

After all, there’s no way we would be able to work with modern engineering organizations like Outreach, Pleo, and Wolt if we couldn’t prove that we have all the necessary controls in place to protect their interests and data.

That’s why we’re excited to let you know that as of December 15, 2022 Swarmia is SOC 2 Type 2 compliant.

What is SOC 2 Type 2?

System and organization control (SOC) 2 is an audit designed to ensure that service providers, including SaaS companies like Swarmia, have the internal controls in place to securely manage data and protect the interests and privacy of their customers. To obtain SOC 2 certification, an organization must meet certain requirements and undergo an independent audit by a third-party auditor.

SOC 2 was developed by the American Institute of Certified Public Accountants (AICPA). It sets criteria for managing customer data according to the five trust service principles: availability, confidentiality, processing integrity, privacy, and security.

While the SOC 2 Type 1 certification we obtained in November 2021 assessed our security practices at a specific point in time, SOC 2 Type 2 assesses how effective those controls are over time by observing operations for several months.

What does this mean for our new and existing customers?

The successfully completed SOC 2 Type 2 audit demonstrates our ability to protect our customers' information and provide secure and reliable service.

Going forward, we’ll continue to follow SOC 2 best practices, including conducting regular internal and external audits, implementing strong security policies and procedures, and regularly monitoring and testing controls.

In addition to completing the SOC 2 Type 2 audit once a year, we undergo internal security audits twice a year, hold regular trainings to all Swarmia employees, and conduct a third-party security audit at least once a year.

Learn more about security at Swarmia

If you’re a Swarmia customer interested in getting access to the SOC 2 Type 2 report, simply reach out to your Customer Success Manager. If you’re evaluating whether Swarmia might be the right solution for you, you can email us to request your copy of the report.

For more details about our commitment to security and privacy, visit our security page.

Oskari Virtaoja
Oskari Virtaoja is a Software Engineer at Swarmia. In the past, he worked as a Dev Team Lead and Software Engineer at Smartly.io.

Subscribe to our newsletter
Get the latest product updates and #goodreads delivered to your inbox once a month.