ScreenApp is SOC 2 Type II certified, independently verified by third-party auditors. This certification demonstrates our commitment to the highest standards of security, availability, and confidentiality for your data.
What is SOC 2 Type II?
SOC 2 (Service Organization Control 2) is a rigorous auditing standard developed by the American Institute of CPAs (AICPA). It evaluates how organizations manage customer data based on five trust principles:
| Principle | What It Means |
|---|---|
| Security | Protection against unauthorized access |
| Availability | Systems are operational and accessible |
| Processing Integrity | Data processing is complete and accurate |
| Confidentiality | Sensitive information is protected |
| Privacy | Personal data is collected and used appropriately |
Type II certification means our controls were tested over an extended period, not just at a single point in time—demonstrating consistent, ongoing compliance.
Our Security Program
Our SOC 2 certification is backed by comprehensive security measures:
23 Security Policies covering:
- Security Awareness & Training
- Access Control & Information Classification
- Secure Development & Physical Security
- Business Continuity & Risk Management
- Vulnerability & Third-Party Risk Management
- Incident Response & Encryption Controls
- Asset Management & Change Management
- Data Classification & Protection
27 Security Controls including:
- TLS/HTTPS encryption for all data in transit
- Encryption at rest for stored data
- Two-factor authentication (2FA)
- Role-based access controls
- Continuous monitoring & alerting
- Regular backup testing
- Incident response procedures
- Secure development practices & code reviews
Trust Center
View our complete security documentation, policies, and compliance status:
The trust center provides:
- Real-time compliance status
- Security policy documentation
- Control descriptions
- Audit information
Who Benefits from SOC 2 Compliance?
SOC 2 certification is essential for:
- Enterprise organizations with strict vendor security requirements
- Healthcare companies handling sensitive patient information
- Financial services requiring regulatory compliance
- Legal firms protecting client confidentiality
- Educational institutions safeguarding student data
- Any organization that prioritizes data security
Additional Compliance
Beyond SOC 2, ScreenApp maintains:
- GDPR Compliance — Full compliance with European data protection regulations
- Bank-level Encryption — AES-256 encryption for data at rest and TLS 1.3 for data in transit
- AWS Infrastructure — Hosted on Amazon Web Services with enterprise-grade physical security
Questions?
For security inquiries, compliance documentation requests, or enterprise security assessments:
- Email: [email protected]
We’re happy to complete security questionnaires and provide additional documentation for your vendor review process.