SOC 2 Type 2: A Company-Wide Commitment to Security

PagerDuty emphasizes its commitment to security as a company-wide priority by open-sourcing employee security training and adhering to best practices, culminating in the completion of a SOC 2 Type 2 examination. Conducted by an independent auditing firm, this examination assessed PagerDuty's security and availability controls for its on-call management platform and Event Intelligence Services over a six-month period in 2019. SOC 2, developed by the American Institute of CPAs, is a compliance framework for service providers that store customer data in the cloud, requiring ongoing internal practices for data security. The Type 2 report, unlike Type 1, verifies continued adherence to controls over time, demonstrating PagerDuty's dedication to protecting customer data and fostering trust. This report can be utilized by vendors and partners with compliance needs as part of their own strategies, reinforcing PagerDuty's role in the broader security community amid prevalent concerns about data breaches and cybersecurity.