How do I get a copy of Sevallaâs SOC 2 report?
Visit our Trust Report page and click any of the request access buttons. In the modal/pop-up that appears, enter the requested information, review and accept our Confidentiality and Non-Disclosure Agreement (NDA), and click Request access to submit your request. If you only need access to one doc, select âAccess to individual documentsâ and choose the document(s) you want. If you need access to all of the documents, leave âFull accessâ selected in the form.What is SOC 2 certification?
When discussing SOC 2 compliance, it is sometimes incorrectly referred to as âcertification.â No certificate is issued for SOC 2 compliance, so it isnât really a certification. Instead, a report is created that details the organizationâs compliance with one or more SOC 2 trust services criteria.Who decides if youâre compliant?
An independent auditor evaluates the service organizationâs compliance with one or more SOC 2 trust services criteria. This evaluation is performed at either a specific point in time (Type I) or over a period of time (Type II). BARR Advisory is Sevallaâs auditor, and Vanta is our GRC (Governance, Risk Management, and Compliance) Management Software.What are the different types of SOC 2 reports?
A Type I report describes the security measures in place at a specific point in time. A Type II report (the type of report we have at Sevalla) assesses the effectiveness of those security measures over a period of time.What are trust service criteria?
The five trust services criteria (formerly Trust Services Principles) are:- Security
- Availability
- Processing integrity
- Confidentiality
- Privacy