GryphonHR Achieves SOC 2 Type II Certification
We are excited to announce that GryphonHR has attained SOC 2 Type II certification, marking a significant milestone that emphasizes our constant dedication to safeguarding data security and privacy. This accomplishment highlights our commitment to upholding the highest standards in protecting the sensitive information entrusted to us by our clients and partners.
What is SOC 2 Compliance?
SOC 2 (Systems and Organization Controls 2) compliance is a rigorous auditing process developed by the American Institute of CPAs (AICPA). It ensures that service providers securely manage data to protect the interests and privacy of their clients. The audit evaluates controls related to security, availability, processing integrity, confidentiality, and privacy.
There are two types of SOC 2 reports:
SOC 2 Type I reports evaluate a company’s controls at a single point in time. It answers the question: are the security controls designed properly?
SOC 2 Type II reports assess how those controls function over a period of time, generally 3-12 months. It answers the question: do the security controls a company has in place function as intended?
Why SOC 2 Matters
Achieving SOC 2 Type II compliance not only showcases GryphonHR's commitment to following industry-leading practices and standards for safeguarding data, but also provides assurance to our clients that we have implemented rigorous controls and protocols to safeguard their sensitive information from unauthorized access, misuse, and potential breaches.
Looking Ahead
As we celebrate this achievement, GryphonHR remains committed to continuous improvement in our security practices. We will continue to adapt and evolve our processes to address emerging threats and uphold the highest standards of data protection.
We are incredibly proud of achieving SOC 2 Type II compliance, and we invite our clients, and partners to join us in celebrating this milestone. Together, we reaffirm our commitment to security, trust, and excellence in everything we do.
For more information about our SOC 2 compliance and our commitment to data security, please contact us at [email protected]
Special thanks to Drata and Prescient Security for their help in this process!