At Alloy, we had a decision to make relatively early on, when we were just 5 people on a very tight budget: whether or not to invest in a SOC2 process. The SOC2 reports are designed to establish a company’s design and operating effectiveness of their non-financial controls as they relate to security, availability, processing integrity, confidentiality and privacy of a system. (For more information, see SSAE-16’s website).
3 min read
5 reasons to do your SOC 2 early as a fintech startup
By Laura Spiekerman on Feb 27, 2019 11:45:00 AM