Xoxoday conducts annual SOC 2 audits using an independent third-party auditor. Our SOC 2 report attests that our controls, governing the availability, confidentiality, and security of customer data, map to Trust Service Principles (TSPs) established by the American Institute of Certified Public Accountants (AICPA).
A SOC 2 fives trust principles:
Security: These principles measure how we protect your data and our systems against unauthorized access and how we prevent information disclosure damage to the systems that protect the availability, integrity, confidentiality, and privacy of your information.
Availability: This trust principle covers whether your information and systems are available for operation and use to meet your company's objectives.
Processing integrity: This principle assesses whether your system's processing is complete and accurate and only processing authorized information.
Confidentiality: This covers whether confidential information stays genuinely protected.
Privacy: This final trust principle looks at whether your users' personal information is collected, used, retained, disclosed, and destroyed per your company's privacy notice and the Generally Accepted Privacy Principles (GAPP).
We are proud of the excellence of our controls and invite you to obtain a copy of our SOC 2 Type I report by contacting your Xoxoday representative