Exclaimer is now SOC 2 compliant
Here at Exclaimer, we take pride in offering the most secure and reliable email signature software on the market. This means safely and securely handling data is a big priority.
To showcase our commitment to the best cloud security practices, we’re therefore delighted to announce that we have received our SOC 2 Type II attestation report.
What is SOC 2?
SOC 2, or System and Organization Control, is a voluntary, independently audited compliance standard developed by the American Institute of Certified Professional Accountants (AICPA). Traditionally used by U.S. companies, SOC 2 has become the de facto global measure for assessing how organizations should manage customer data security within the cloud.
A SOC 2 report shows how an organization has implemented appropriate controls to mitigate risks related to security, availability, processing integrity, confidentiality, and privacy, along with HIPAA Security Rule requirements.
Achieving a SOC 2 Type II report means an organization successfully demonstrates how its processes support the highest security and privacy standards when handling customer data, protecting its infrastructure from cyber-attacks, and preventing breaches.
Why has Exclaimer become SOC 2 compliant?
We know that security is a top concern for customers when purchasing new software. Gartner's 2023 Global Software Buying Trends Report highlights that 42% of all buyers think security is the most important factor when planning an investment in new software. And for email, security is paramount.
Exclaimer has always focused on robust security and data protection. We’re already accredited with ISO/IEC 27001, ISO/IEC 27018, and Cyber Essentials certifications. SOC 2 compliance is the next step in demonstrating that we’re the most trusted and secure cloud service provider of email signature solutions. In fact, we’re the only provider to attain both SOC 2 Type II attestation and ISO 27001 compliance.
How did Exclaimer become SOC 2 compliant?
Attaining SOC 2 compliance takes work. Exclaimer underwent a thorough SOC 2 Type II compliance audit administered by an independent auditor, BARR Advisory, P.A. We went for the more advanced SOC 2 Type II attestation as we wanted to demonstrate our clear commitment to data management and security at all times, not just at a specific point.
At the end of the audit, we received a report detailing how well we met the SOC 2 objectives and if there were any areas of concern. Exclaimer passed this with flying colors! The audit verified that we securely manage customer data at all times and have robust security measures in place to ensure data remains confidential and private.
Our SOC 2 compliance is certified against the following Trust Services Principles:
Security – our system is protected against unauthorized access (both physical and logical), backed up by robust infrastructure in Microsoft Azure.
Availability – our email signature solutions operate with a 99.99% uptime with practically no downtime.
Confidentiality – information designated as confidential is protected through comprehensive security measures.
What does this mean for our customers?
Exclaimer’s SOC 2 Type II attestation gives customers peace of mind that they’re working with a cloud service provider that takes data protection very seriously. Receiving a SOC 2 report showcases that we:
Protect the privacy of our customer data at all times
Provide secure methods of storing and processing data
Ensure the data we have is always accessible
Implement specific controls to keep customer data secure and private
The final word
Exclaimer’s SOC 2 compliance augments our commitment to the best privacy and security practices. While other email signature solution providers piggyback off the certification their Infrastructure as a Service (IaaS) vendor has achieved, Exclaimer is the only one to achieve both ISO and SOC compliance. It’s a real achievement, one we’re proud of, and it means Exclaimer is the most secure provider of email signature management software out there.
If you’d like to see Exclaimer’s SOC 2 report, it’s available on request from our Conveyor Trust Portal.
To see the complete list of Exclaimer's security accreditations, visit our Trust Center.