Announcing SOC 2 Compliance
Shopalyst is SOC 2 Type 2 Compliant

Our customers trust us with their data and we have taken every measure to ensure that customer data is secured on Shopalyst platform. We are happy to announce that Shopalyst has successfully completed SOC 2 Type 2 audit for all 5 trust service criteria – Security, Availability, Processing Integrity, Confidentiality, and Privacy. This reinforces our commitment towards data security & privacy, which is now validated by an AICPA certified auditor.

What is SOC 2?

Developed by American Institute of Certified Public Accountants (AICPA), Systems and Organization Control (SOC 2) reports provide detailed information and assurance about the controls at an organization relevant to security, availability, and processing integrity of the systems that process users’ data and the confidentiality and privacy of the information processed by these systems

There are two types of SOC reports:

  1. SOC 2 Type 1: Describes the design and implementation of controls for applicable trust service criteria
  2. SOC 2 Type 2: Describes the design and implementation of controls for applicable trust service criteria along with the operational effectiveness of the controls for a specified duration

Trust Services Criteria

The Trust Services Criteria include five trust services categories, as defined by AICPA

Security – Information and systems are protected against unauthorized access, unauthorized disclosure of information, and damage to systems that could compromise the availability, integrity, confidentiality, and privacy of information or systems and affect the entity’s ability to achieve its objectives

Availability – Information and systems are available for operation and use to meet the entity’s objective

Processing integrity – System processing is complete, valid, accurate, timely, and authorized to meet the entity’s objectives

Confidentiality – Information designated as confidential is protected to meet the entity’s objectives

Privacy – Personal information is collected, used, retained, disclosed, and disposed of to meet the entity’s objectives

How Shopalyst protects your data

To know more about Shopalyst’s data security & privacy controls or to get a copy of Shopalyst SOC 2 Type 2 report, write to us @ infosec@shopalyst.com