What is SOC 2 Compliance?

SOC 2 compliance is a set of standards developed by the AICPA that focus on the controls and processes related to data protection. SOC 2 compliance is not just for enterprise customers, but for all users who value the security and protection of their data

The Trust Principles of SOC 2 Compliance

The Trust Principles of SOC 2 Compliance cover five key areas: Security, Availability, Processing Integrity, Confidentiality, and Privacy. These principles provide a comprehensive framework for evaluating an organization’s controls and processes related to data protection.

1. Security

This principle focuses on protecting the system against unauthorized access, both physical and logical. This includes access controls, user authentication, network security, and protection against external and internal threats.

2. Availability

This principle focuses on ensuring that the system is available for use and that any interruptions are minimal. This includes redundancy, backup, and recovery procedures, as well as monitoring and alerting systems.

3. Processing Integrity

This principle focuses on ensuring that data is processed accurately, completely, and in a timely manner. This includes data validation and error checking, as well as monitoring and reporting of processing errors.

4. Confidentiality

This principle focuses on protecting confidential information from unauthorized access or disclosure. This includes the encryption of data at rest and in transit, as well as access controls and audit trails.

5. Privacy

This principle focuses on the collection, use, retention, and disposal of personal information. This includes policies and procedures related to consent, access, and disclosure, as well as compliance with applicable privacy laws and regulations.

MakeForms & SOC 2 Compliance

MakeForms is proud to be SOC 2 Type 1 compliant, meeting the highest standards for data protection and security. Our EU & US Datacenters (hosted by Vultr) and our Database Provider (hosted by AWS) are also SOC 2 compliant, ensuring that all aspects of our platform are secure and protected. In addition to this, we provide our users with the option to download our SOC 2 certificate for their reference. To download the certificate, please fill out the form available on our website, and we will provide you with a copy of our SOC 2 Type 1 report. We take the security and privacy of our users’ data very seriously and are committed to maintaining the highest standards of data protection.

Contact Us

If you have any questions about our SOC 2 compliance or our other security measures, please feel free to contact us at [email protected]. We would be happy to provide you with more information about our controls and processes to give you peace of mind when using our platform.

MakeForms is compliant with

ISO 27001 : 2013

MakeForms is compliant with ISO 27001:2013, a globally recognized standard for information security management.

Get more info →

SOC2

MakeForms is proud to be SOC 2 compliant, meeting the highest standards for data protection and security set by the American Institute of Certified Public Accountants (AICPA)

Get more info →
blank

GDPR EU

MakeForms is fully compliant with the General Data Protection Regulation (GDPR), the EU regulation that sets a high bar for data protection and privacy.

Get more info →
blank

HIPAA

MakeForms is compliant with HIPAA, a federal law in the United States that provides data privacy and security provisions for safeguarding medical information

Get more info →
blank

PIPEDA

MakeForms is committed to compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada

Get more info →
blank

CCPA

MakeForms takes all necessary steps to ensure that our platform is fully compliant with the California Consumer Privacy Act (CCPA).

Get more info →
blank

GDPR UK

MakeForms is committed to complying with all relevant regulations, including the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018

Get more info →
blank

Austalian DPA

MakeForms is compliant with Australian DPA which sets out rules for the collection, use, disclosure, and storage of personal information, and provides individuals with certain rights in relation to their personal information.

Get more info →