SOC 2
← Back to Regulatory Frameworks
A compliance framework based on five trust service criteria: Security, Availability, Processing Integrity, Confidentiality, and Privacy. SOC 2 Type I assesses controls at a point in time; Type II assesses controls over a period (typically 12 months). Common requirement for SaaS vendors.