SOC 2 compliance is a set of standards developed by the AICPA that focus on the controls and processes related to data protection. SOC 2 compliance is not just for enterprise customers, but for all users who value the security and protection of their data
The Trust Principles of SOC 2 Compliance
The Trust Principles of SOC 2 Compliance cover five key areas: Security, Availability, Processing Integrity, Confidentiality, and Privacy. These principles provide a comprehensive framework for evaluating an organization’s controls and processes related to data protection.
This principle focuses on protecting the system against unauthorized access, both physical and logical. This includes access controls, user authentication, network security, and protection against external and internal threats.
This principle focuses on ensuring that the system is available for use and that any interruptions are minimal. This includes redundancy, backup, and recovery procedures, as well as monitoring and alerting systems.
This principle focuses on ensuring that data is processed accurately, completely, and in a timely manner. This includes data validation and error checking, as well as monitoring and reporting of processing errors.
This principle focuses on protecting confidential information from unauthorized access or disclosure. This includes the encryption of data at rest and in transit, as well as access controls and audit trails.
This principle focuses on the collection, use, retention, and disposal of personal information. This includes policies and procedures related to consent, access, and disclosure, as well as compliance with applicable privacy laws and regulations.
MakeForms is proud to be SOC 2 Type 1 compliant, meeting the highest standards for data protection and security. Our EU & US Datacenters (hosted by Vultr) and our Database Provider (hosted by AWS) are also SOC 2 compliant, ensuring that all aspects of our platform are secure and protected. In addition to this, we provide our users with the option to download our SOC 2 certificate for their reference. To download the certificate, please fill out the form available on our website, and we will provide you with a copy of our SOC 2 Type 1 report. We take the security and privacy of our users’ data very seriously and are committed to maintaining the highest standards of data protection.
If you have any questions about our SOC 2 compliance or our other security measures, please feel free to contact us at [email protected]. We would be happy to provide you with more information about our controls and processes to give you peace of mind when using our platform.
MakeForms is compliant with ISO 27001:2013, a globally recognized standard for information security management.Get more info →
MakeForms is proud to be SOC 2 compliant, meeting the highest standards for data protection and security set by the American Institute of Certified Public Accountants (AICPA)Get more info →
MakeForms is fully compliant with the General Data Protection Regulation (GDPR), the EU regulation that sets a high bar for data protection and privacy.Get more info →
MakeForms is compliant with HIPAA, a federal law in the United States that provides data privacy and security provisions for safeguarding medical informationGet more info →
MakeForms is committed to compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA) of CanadaGet more info →
MakeForms takes all necessary steps to ensure that our platform is fully compliant with the California Consumer Privacy Act (CCPA).Get more info →
MakeForms is committed to complying with all relevant regulations, including the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018Get more info →
MakeForms is compliant with Australian DPA which sets out rules for the collection, use, disclosure, and storage of personal information, and provides individuals with certain rights in relation to their personal information.Get more info →