FlexDesk is SOC 2 Type 2 compliant!

As part of FlexDesk's continued commitment to security, we're proud to announce that we obtained our SOC 2 Type 2 attestation report.

‍

SOC 2 Type 1 vs Type 2

SOC 2 reports come in two varieties: Type 1 and Type 2.

• ‍SOC 2 Type 1: Evaluates the design of a company’s systems and processes at a specific point in time. It assesses whether the necessary controls are in place, but does not verity their operational effectiveness over time. This assessment is conducted by an independent third-party auditor.

• SOC 2 Type 2: Comprehensive assessment of not only the design, but also the effectiveness of the company’s control over a period, typically ranging from a few months to a year. This provides assurance that the controls are not only in place but are consistently functioning as intended. As with Type 1, the audit is performed by an independent third-party auditor.

‍

‍

Process and Partners

We partnered with Johanson Group - the same group that assisted with our SOC 2 Type 1 process - to set up an audit period from February 21st to May 21st. Less than 6 weeks after the end of the observation period, we received our final report.

‍

What's Next

Our SOC 2 Type 2 report can be made available to current and prospective customers upon request.