Contact us
Thank you for your message, we'll come back to you shortly.
Oops! Something went wrong while submitting the form.
Back to Blog

TakeTurns Achieves SOC 2 Compliance, a Gold Standard for Security and Privacy

At Every Turn TakeTurns Blog
|  by
Mickaël Chevalier
Mickaël Chevalier
Co-founder & CTO
TakeTurns Achieves SOC 2 Compliance, a Gold Standard for Security and Privacy

The entire team at TakeTurns is proud to announce that we’ve achieved SOC 2 compliance. This marks an important milestone for our company in our mission to deliver a secure solution for external collaboration on business-critical documents.

SOC 2: A Gold Standard for Security & Privacy

SOC 2 or Service Organization Controls 2 is a framework that is governed by the American Institute of Certified Public Accountants (AICPA). With a SOC 2 audit, an independent service auditor will review an organization’s policies, procedures, and evidence to determine if their controls are designed and operating effectively. A SOC 2 report communicates a company’s commitment to data security and protection of customer information.  

Becoming SOC 2 compliance demonstrates TakeTurns’ commitment to our customer’s trust and is a major milestone towards improving our overall security posture. With increasing cybersecurity threats and data breaches, it is paramount that organizations prioritize information security and the protection of their systems and data. By undergoing a SOC 2 audit, our controls and processes were validated by a third-party who attests to the functioning of the controls relevant to our application. 

We embarked on our SOC 2 compliance journey with two key partners: 

  • Vanta. We partnered with Vanta, the leader in the Trust Management space, to help us automate the collection of our audit evidence. Vanta provides us with the strongest security foundation to protect our customer data.
  • Advantage Partners. Our audit firm, Advantage Partners, was extremely helpful in creating a seamless audit experience. With their guidance and support, we were able to achieve SOC 2 compliance in a swift, efficient manner. 

Our Commitment to Security & Privacy 

External collaborations are business-critical and routinely involve sensitive documents and files. The tool our customers choose must adhere to the highest security and privacy standards.

From day one, our strategy has been centered around three pillars:

  • Design and implement security and privacy features into our product from the beginning, e.g., roles, permissions, data retention, traceability, etc.
  • Establish policies and controls and monitor compliance with those controls
  • Demonstrate our compliance with those policies to third-party auditors. This includes our new SOC 2 compliance as well as privacy regulation and payment systems.

Read more on our Security & Privacy commitments:

Go async eBook