We are excited to share that our personality data platform is now SOC-2 Type II compliant!
The SOC-2 certification underscores our commitment to data security, privacy, and operational excellence. Data security & privacy have always been taken seriously at Crystal but the SOC-2 certification serves as a third-party validation. This blog post dives into the significance of SOC-2 compliance and what it means for you, our valued users.
SOC-2, which stands for System and Organization Controls 2, is a compliance framework designed by the American Institute of Certified Public Accountants (AICPA). When a business embarks on complying with SOC-2, a rigorous auditing process is conducted to evaluate the organization's controls and policies with regard to security, availability, processing integrity, confidentiality, and privacy of user data. It's a globally recognized standard that provides independent validation of a company's commitment to data security.
Crystal’s security & compliance principles guide how we deliver our products and services and make sure our users can simply and securely access our data.
Our journey doesn't stop here. We will continue to invest in security, privacy, and operational excellence to ensure that we meet and exceed industry standards. We understand that the digital landscape is ever-evolving, and we are committed to staying at the forefront of security and compliance to protect your interests.
We thank you for your continued trust and support, and we look forward to providing you with secure and compliant personality data for every business professional. For more information, you can read through our trust report where we provide up-to-date monitoring on our infrastructure, product security, organizational security and more .