Synadia is SOC 2 Type 2 Compliant

In August of 2023, Synadia achieved SOC 2 Type I compliance. We’re happy to announce that we’re now SOC 2 Type II compliant!

How are Type II and Type I different?

I knew you would ask that! SOC 2 Type I is a point-in-time audit. It reflects that policies and internal controls are in place, that they meet certain criteria, and that they’re both designed correctly and sufficient to their tasks.

SOC 2 Type II, on the other hand, reflects the ability of an organization to actually implement, enforce, and maintain those controls over a period of time. It’s one thing for us to say that we have a set of policies and controls, and it’s another thing entirely to actually prove to auditors that we do what we say we’re going to do, in the time frames we claim we’ll do them in.

How does this impact Synadia’s customers?

Much as we said in our blog post about our SOC 2 Type I audit, it offers additional peace of mind. It shows that we’re committed to maintaining our compliance over time, and not just checking the boxes once and forgetting about it.

What’s next?

Rest assured, we have no plans to rest on our metaphorical laurels! We remain committed to not just retaining our current standards and keeping our SOC 2 Type II compliance going forward. We also have our eyes on other compliance frameworks, like PCI and ISO 27001. Keep your eyes on this blog for future updates!

Synadia achieved compliance through Vanta, with auditing completed by Johanson Group, LLC. If you would like to request a copy of our SOC 2 Type II report, please contact info@synadia.com.

About the author

Evelyn Scidmore serves as Security Operations Engineer at Synadia. Evelyn is a security and systems engineering veteran with over 20 years of experience, doing a range of things from reverse engineering malware and hunting for zero-day vulnerabilities to designing and building secure infrastructure for cryptocurrency banking.