By Robert Pruyn, Senior Compliance Lead
Locus Robotics has once again successfully completed its Service Organization Control (SOC) 2 Type II audit for the Security trust principle. This achievement demonstrates our continued commitment to maintaining comprehensive security for our customers.
For those unfamiliar, SOC 2 is an auditing standard developed by the American Institute of CPAs (AICPA) that ensures proper controls and procedures are in place for security, availability, processing integrity, confidentiality, and privacy.
A SOC 2 Type II report indicates that a service organization’s controls have been evaluated over time. For a Type I report, the controls are evaluated only at a point in time. For a Type II report, those controls are evaluated over a minimum period of 12 months. This expanded testing period provides assurance that controls are working effectively over an extended timeframe and not just at one point in time and possibly not again after that.
A SOC 2 Type II audit is a rigorous evaluation of a company’s information security practices over an extended period of time. For Locus, our audit covered a 12-month timeframe, providing independent validation that our strict security policies and procedures are followed consistently.
By meeting the SOC 2 standard two years in a row, we have proven external assurance for our customers to show that their data is safe in our hands. Some of the security controls and processes evaluated during our latest audit included:
- Employee background checks
- Multi-factor authentication
- Continuous security monitoring
- Incident response procedures
- Change management processes
- Access controls
- Disaster recovery protections
Achieving this level of certification is no small feat — it requires effort from the entire organization. Our team members worked tirelessly to ensure we exceeded the SOC 2 criteria for security. With data breaches on the rise, demonstrating this level of diligence has become table stakes for any company handling customer data and providing critical services.
At Locus Robotics, we make security and compliance top priorities. Renewing our SOC 2 certification exemplifies our commitment to protecting customer data and securing operations. We’re already planning ahead for next year’s audit as we continue upholding high information security standards.
Click here to read our public-facing SOC 3 report. (Note: A SOC 2 report is private, while the public version of the same report is known as a SOC 3.)
We are dedicated to the continuous review of information security practices, which means making ongoing improvements and updates to maximize the protection of our products and our customers. Check out our TRUST Center to learn more about our ongoing security and compliance reviews, certifications, policies, and best practices.