As Gatsby grows so do our cybersecurity efforts! Read about our SOC 2 audit and what we are doing to build a modern security program.

Gatsby has achieved a successful SOC 2 Type 1 audit and is undergoing a SOC 2 Type 2 audit to formalize and expand its cybersecurity program under the leadership of Mike Gualtieri. SOC 2 compliance, a recognized standard managed by the American Institute of Certified Public Accountants, is critical for demonstrating the maturity of a company's security and data handling practices. Gatsby's compliance incorporates Security, Availability, and Confidentiality Trust Services Criteria to reassure customers of the platform's robust security measures. Partnering with compliance firm Laika, Gatsby aims to integrate industry best practices tailored to its unique operational culture. Despite the distinction between compliance and comprehensive security, Gatsby is committed to enhancing its security capabilities, emphasizing internal penetration testing, threat modeling, and detection engineering. This approach not only meets SOC 2 requirements but also aligns with modern cybersecurity practices to protect against evolving threats and improve overall security posture.