We are pleased to announce that Huntress has successfully completed our SOC2 Type 1 audit for the trust service criteria of Security, Availability and Confidentiality. This audit confirms our commitment to providing our customers with the highest level of data security and privacy and ensures we are not biased in the internal assessment of our security practices.
The SOC2 Type 1 audit is an assessment of our internal controls and processes that protect our customers’ data. Our auditors evaluated our systems, policies and procedures to ensure that they are designed effectively to comply with the stringent SOC2 standards. The audit report is available upon request—reach out to your sales representative for a copy.
The trust service criteria of Security, Availability and Confidentiality are essential for ensuring that our systems are secure, reliable and maintain the confidentiality of sensitive information. Here is a brief explanation of each of the trust service criteria we were audited under:
- Security: The security criterion evaluates a company's ability to protect its systems and data from unauthorized access, theft or destruction.
- Availability: The availability criterion is focused on ensuring that a company's systems are available and reliable for users at all times.
- Confidentiality: The confidentiality criterion is focused on ensuring that a company's sensitive information is protected from unauthorized access, disclosure or use.
In addition to SOC2 Type 1, we are also fully compliant with GDPR and CCPA.
The General Data Protection Regulation (GDPR) is a European Union law that regulates how personal data of individuals should be collected, processed and used by businesses and organizations.
The California Consumer Privacy Act (CCPA) is a state law in the United States that grants California residents certain rights over their personal information and requires businesses to disclose their data collection and sharing practices.
In simple terms, being GDPR and CCPA compliant means that our customers have more control over how we handle their data—which is good news all around.
We take pride in our compliance standards and will continue to invest in our systems and processes to maintain the highest standards of data privacy and security. We understand that our partners trust us with their information, and we take that trust very seriously.