Service Organization Control 2 definition

Service Organization Control 2 or “SOC 2” means the internal controls in place at the third-party service organization. For a company to receive SOC 2 certification, it must have sufficient policies and strategies that satisfactorily protect the client’s data.
Sample 1Sample 2Sample 3
Service Organization Control 2 or “SOC 2” means the internal controls at the third-party service relevant to security, availability, processing integrity, confidentiality, or privacy for a company to receive SOC 2 certification, it must have sufficient policies and strategies that satisfactorily protect the client’s data.
Sample 1Sample 2

Examples of Service Organization Control 2 in a sentence

  • If the solution is cloud based, the Contractor must obtain an annual audit that meets the American Institute of Certified Public Accountants (AICPA) Statements on Standards for Attestation Engagements (“SSAE”) No. 16, Service Organization Control 1 Type 2 and Service Organization Control 2 Type 2.

  • Okta will conform with security protocols which are further described in Okta’s most recently completed Service Organization Control 2 (SOC 2) audit reports or other similar independent third-party annual audit report (“Audit Report”).

  • Such security program will conform to the Security Exhibit attached as Exhibit A, and is further described the most recent Service Organization Control 2 (SOC2 Type II) (or substantially similar industry standard report).

  • Such Security Program will conform with the Okta security protocols which are further described in Okta’s most recently completed Service Organization Control 2 (SOC 2) audit reports or other similar independent third party annual audit report (“Audit Report”).

  • The data importer also regularly undergoes Service Organization Control 2 (SOC 2) Type II audits.

  • A SOC-2 Report (or agreed upon equivalent), more formally known as Service Organization Control 2 Report, reports on a vendor’s organizational controls related to security, availability, processing integrity, confidentiality, or privacy.

  • Dropbox has completed Service Organization Control 2 (SOC 2) Type II, Service Organization Control 1 (SOC 1) Type II, ISO 27001 and ISO 27018 audits for these Services.

  • Zadara has completed Service Organization Control 2 (SOC 2) Type II and ISO 27001 audits for the Services, which were conducted by an independent auditor that evaluated the design and effectiveness of Zadara security policies, procedures, and controls.

  • Dropbox has completed Service Organization Control 2 (SOC 2) Type II, audits for these Services.

  • This requirement includes, but is not limited to, documentation review, server configuration review, vulnerability scanning, code review, physical data center reviews, and operational process reviews and monitoring of Service Organization Control 2 and Statements on Standards for Attestation Engagements (SSAE) 18 reports.

Related to Service Organization Control 2

  • Managed care organization means an entity that (1) is under contract with the department to provide services to Medicaid recipients and (2) meets the definition of “health maintenance organization” as defined in Iowa Code section 514B.1.

  • Student organization means a group, club or organization having students as its primary members or participants. It includes grade levels, classes, teams, activities or particular school events. A student organization does not have to be an official school organization to come within the terms of this definition.