GitGuardian is now SOC 2 Type I compliant
Blog post from GitGuardian
GitGuardian has achieved SOC 2 Type I compliance, marking a significant step in its commitment to securing code and customer data by catching secrets-in-code and enforcing security policies across the software development lifecycle. SOC 2, developed by the American Institute of CPAs, outlines criteria for managing customer data based on security, availability, processing integrity, confidentiality, and privacy. SOC 2 compliance includes two levels, with Type I focusing on system design suitability and Type II on operational effectiveness, which is assessed after at least six months. GitGuardian partnered with Vanta, a leader in continuous compliance monitoring, to automate audit evidence collection, ensuring a robust security foundation and protection for customer data. The audit, conducted by Prescient Assurance, a leader in security and compliance certifications, verifies that GitGuardian's information security practices meet SOC 2 standards. The company is now progressing toward achieving SOC 2 Type II compliance to complete the process.