DiscordJoin Our Vibrant Discord Community!
Back to all posts
Paladin Max is SOC 2 Type 1 Compliant! Everything You Need to Know About it

Paladin Max is SOC 2 Type 1 Compliant! Everything You Need to Know About it

Hunter ZhaoSecurity & Compliance

What is SOC 2 Compliance?

In short, SOC 2 is a voluntary compliance standard for technology companies with cloud-based products and specifies how an organization should manage customer data. Compliance with the guidelines set by the AICPA (American Institute of Certified Public Accountants) demonstrates an organization's commitment to implementing effective controls and safeguards to protect customer data.

A SOC 2 Type 1 report evaluates the design and implementation of these controls at a specific point in time. It provides assurance to our customers and stakeholders that we have established necessary processes and controls to mitigate risks related to data security.

What SOC 2 Compliance Means to Us

Our SOC 2 Type 1 report reaffirms our commitment to safeguarding our customers' sensitive information. Data security is our top priority, and our compliance demonstrates our dedication to meeting the industry's most rigorous standards. We recognize the trust that our customers place in us, and we continually strive to uphold that trust by prioritizing the security of their data.

So What Exactly Gets Evaluated?

You may be wondering, what exactly is covered by the auditor in a SOC 2 Type 1 report? Our audit covered Security as one of the key Trust Service Principles relevant to the design of our controls.

Our compliance partner helped tailor the relevant controls to our infrastructure, software, processes, people, and data, relating to:

  • Remote onboarding of employees
  • Cloud infrastructure security
  • Risk management
  • Multi-factor authentication
  • User access review
  • Threat detection
  • Change management procedures
  • Assets management
  • Data encryption
  • Secure development and more

As mentioned, we've built our solution around being SOC 2 compliant, but now we're proud to have the "official" stamp that recognizes the design of our data protection controls.

We achieved SOC 2 compliance and received our report in a record-breaking time with clear colors, due to the fact that we had no prior security issues and there were very minor remediations needed. We are very proud of this result, as it is a testament to our high standards of controls and security standards.

Our Trusted Compliance Partner

Scytale's expertise and technology helped take our compliance to the next level by automating the lengthy processes involved with SOC 2 compliance and giving us a single source of truth to track and monitor all our audit requirements.

Your Data is Secure with Us

We’ve earned our customers’ trust in handling their sensitive data responsibly. Our SOC 2 Type 1 report serves as a solid assurance, allowing them to rest assured that their data is secure with us.

Our SOC 2 compliance is a testament to our commitment to data security, and we proudly show customers and prospects that they’re partnering with a company that cares about their data.

What’s Next for Paladin Max's Data Security Compliance

We know that SOC 2 compliance is not a once-off project. Maintaining compliance is critical and that’s why we are committed to continuously improving our security posture and processes to adapt to evolving threats and industry best practices. We're also setting our sights on SOC 2 Type 2 compliance to further demonstrate our long-term commitment to data security and our customers’ peace of mind.