At Endear, we’re constantly working to improve our platform to better serve our customers. That’s why we’re proud to announce that we’ve achieved SOC 2 Type 1 compliance.

This is a significant milestone for us and one that we believe will greatly benefit our customers, because this compliance is critical in ensuring retailers have the most robust security, privacy, and confidentiality while running their business operations on our retail solutions. In this blog post, we’ll explain what SOC compliance is, why it matters, and how it will impact our customers.

Service Organization Control (SOC) is a set of standards developed by the American Institute of Certified Public Accountants (AICPA). These standards act as internal measures for how well a company secures its clients’ data. The audits that are performed are by an independent third-party service auditor. SOC 2 compliance is a rigorous process that involves a thorough review of a company’s policies, procedures, and controls related to data security, availability, processing integrity, confidentiality, and privacy.

There are two different reports, SOC 1 and SOC 2. These reports are based on business engagements for cloud solutions. The SOC 1 report focus is on internal controls over financial reporting. The SOC 2 report focus is on security, availability, processing integrity, privacy, and confidentiality. Both SOC 1 and SOC 2 have report types, Type 1 and Type 2. Type 1 reports on the fairness of the presentation of management's description of the service organization's system and the suitability of the design of the controls to achieve the related control objectives included in the description as of a specified date. Type 2 reports on the fairness of the presentation of management's description of the service organization's system and the suitability of the design and operating effectiveness of the controls to achieve the related control objectives included in the description throughout a specified period.

SOC 2 compliance matters because it provides assurance that a company is following best practices when it comes to data security and privacy, and that we are representing this fairly to our customers. Achieving SOC 2 compliance is a sign that a company takes data security seriously and has implemented the necessary controls to protect its clients’ data. At Endear, we understand how important this is for retailers, particularly in today’s environment, where data breaches and cyber attacks are on the rise.

Our customers can rest assured knowing that we take their data security and privacy very seriously. Achieving SOC 2 compliance means that we’ve implemented the necessary controls to protect our customers’ data and have undergone a rigorous audit to ensure that we’re following best practices. This will give our customers peace of mind knowing that their data is in good hands.

While achieving SOC 2 Type 1 compliance is a significant accomplishment, it's just the beginning of our ongoing commitment to data security and privacy. Our next step is to work towards achieving SOC 2 Type 2 compliance, which involves not only implementing the necessary controls but also demonstrating that they've been in place and effective continuously for months. We're committed to continuing to improve our platform and processes to ensure that we're providing our customers with the highest level of data security and privacy possible.

At Endear, we are proud to further demonstrate our commitment to data security and privacy by achieving SOC 2 compliance. SOC 2 compliance is a significant milestone that provides assurance to our customers that your data is in good hands. We are committed to continuing to work hard to ensure that we’re meeting and exceeding industry standards when it comes to data security and privacy.