Spark is doubling down on data security
At Spark we strive to continuously improve our platform, and that includes our commitment to strengthening our data security. As a result, our team has been working towards and achieved a significant milestone.
We are pleased to announce that we have been awarded SOC 2 Type 1 compliance.
What is SOC 2?
For starters, let’s break down what SOC 2 compliance is. SOC 2 is a framework standard for how organizations should be securely managing customer data. The framework was developed by the American Institute of CPAs and is based on the following Trust Services Criteria:
- Security
- Availability
- Processing Integrity
- Confidentiality
- Privacy
This framework was created to provide a base guideline for an organization’s security protocols to be evaluated against and lays out how customer data should be handled in the cloud. SOC 2 Type 1 specifically evaluates how a firm’s internal security processes stand up against this framework.
Who awarded this to us?
To achieve SOC 2 Type 1 compliance, we were audited by an independent firm who evaluated our data security protocols relative to the Security criteria of the Trust Services Criteria. Upon completing the evaluation, the auditor presented that our security internal controls adequately safeguarded our customers’ data in order to pass the audit.
How does this benefit you as a user?
With the auditor’s findings indicating that our platform’s security measures meet SOC 2 Type 1 compliance, you as customers and prospective clients of Spark can rest assured that your data is being handled and protected securely.
What's next?
While SOC 2 Type 1 is an excellent achievement, this is not the end for us improving our data security. We are currently reinforcing our platform even further, with our sights set on achieving the next level of SOC 2 compliance, SOC 2 Type 2, to ensure Spark’s security is stronger than ever.