Amity Achieves SOC 2 Type II Compliance for Enhanced Security
Amity is excited to announce that it has achieved a significant milestone by obtaining a SOC 2 Type II report after successfully completing the SOC 2 examination. This report is a testament to our commitment to maintain the highest standards for the security, availability, processing integrity, confidentiality, and privacy of our clients' social cloud data.
The SOC 2 Type II report is a comprehensive review of our control systems and policies, which confirms that our services meet the strict requirements of the American Institute of Certified Public Accountants (AICPA) and provide reliable, secure, and confidential services. We are proud of this accomplishment as it showcases our dedication to delivering high-quality services to our customers.
The SOC 2 Type II audit is part of a larger effort by Amity, who has already been compliant with ISO 27001 and the General Data Protection Regulation (GDPR). As part of this process, the company has implemented a rigorous set of controls and procedures to ensure customer data is protected from unauthorized access or misuse. This includes regular vulnerability testing and encryption services.
"At Amity, keeping our customers' data secure is of the utmost importance," said Amity's CEO and Founder Korawad Chearavanont. "By completing this audit with Deloitte, we now have an additional layer of protection in place to ensure our customers' peace of mind."
SOC 2 requires organizations to establish and follow rigid security policies and procedures. The examination is administered by an independent auditor to confirm Amity’s compliance with the five Trust Service Criteria (TSCs) including:
- Security - The system is safeguarded against unauthorized entry (both physical and logical).
- Availability - The system is ready for use and functioning as promised or agreed.
- Processing Integrity - System processing is complete, precise, timely, and authorized.
- Confidentiality - As committed or agreed, information marked as confidential is safeguarded.
- Privacy - Personal information is gathered, used, kept, revealed, and deleted in accordance with the entity's privacy notice promises.
"We are committed to providing our customers with the highest level of security," said Touchapon Kraisingkorn, CTO and Co-founder of Amity. "The successful completion of this audit confirms that we are taking all necessary steps to protect their data."
The audit also validates Amity's commitment to privacy and compliance with GDPR regulations. All customer data is stored securely in accordance with GDPR requirements, ensuring that personal information remains private and secure at all times. In addition, users have full control over their own data and can delete it at any time if desired.
"Our relationship with our customers is built on trust," said Amity's COO and Co-founder Francesca Gargaglia. "Our goal is to provide them with a secure platform where they know their data is always safe with Amity."
With this new certification in place, Amity continues its mission to provide businesses around the world with enhanced security measures that meet the highest standards in the industry.