Our SOC 2 and What it Means
We are proud to announce that Virtual Veterans Communities is SOC 2 compliant! Our successful SOC 2 Type II audit was completed by AssuranceLab. SOC 2 represents a high standard that is globally recognized to demonstrate our commitment to securing our customers' critical information assets.
We are incredibly proud of this achievement and committed to always holding ourselves to the highest standards regarding data security and privacy and legal and regulatory compliance.
It's one thing to be SOC 2 compliant, but what does it mean? Read on to learn how this compliance benefits our clients.
Understanding SOC 2 Type II Compliance
A Service Organization Control (SOC) 2 Type II report is a document that describes a company's internal controls and evaluates their effectiveness in safeguarding client data, particularly for service providers. The report is generated by an independent third-party auditor and examines whether the security protocols implemented by the company are both secure and efficient.
To hold this compliance, companies must be audited by an independent certified public accountant who works with the company on an assessment and determines whether the company meets the appropriate standards established by the American Institute of Certified Public Accountants (AICPA).
VVC’s SOC 2 Type II audit report attests for a given point in time that all our service-related systems and processes meet industry-standard security and privacy protocols. Control areas in scope range from common security criteria and system availability to data confidentiality and privacy requirements for handling personal information. The report confirms and details the security and privacy safeguards we've implemented for our clients in compliance with the AICPA's (American Institute of Certified Public Accountants) TSC (Trust Services Criteria).
Why is SOC 2 compliance important to VVC?
Data is at the core of everything we do at VVC, and we take information security and privacy extremely seriously. We hold ourselves to the highest standards when it comes to data protection and work hard to ensure our systems and technology meet industry standards.
SOC 2 compliance is completely voluntary, but VVC felt it was essential to achieve this compliance to prove our commitment to data protection for our clients and their customers.
What does this mean for VVC's clients and their students?
Our clients entrust us with personal data from their customers, and they rightfully demand independent assurances about our security and privacy posture. Being SOC 2 compliant shows that VVC has the governance, infrastructure, and systems in place to protect client information from unauthorized access both from within and outside the company. Having successfully gone through the SOC 2 Type II process also provides us with an audit report that client security teams find extremely useful.
SOC 2 Type II
At VVC, we understand the importance of trust and security for our higher education clients. That's why we're proud to announce that our company is now SOC 2 Type II compliant.
What’s next?
The protection of client customer data is paramount to what we do at VVC. We're committed to maintaining our SOC 2 compliance in future years and will continuously strengthen our platform in preparation for a constantly evolving cyber threat landscape.
If you have any questions about our compliance or other information security topics, please reach out to us at info@virtualveteranscommunities.com.
