What is SOC 2 Type 2
SOC stands for Service Organization Control. There are a couple of different versions. SOC 1 is focused on internal controls over financial reporting. This is important for any company that deals with money. SOC 2 focuses on controls relevant to the security, availability, processing integrity, confidentiality, and/or privacy of customer data. You may be wondering what is the difference between Type 1 and Type 2. Great question. Type 1 covers just the design of the controls, while Type 2 evaluates the design as well as evaluates the effectiveness of the controls, so it is much more rigorous.