“Trust, but verify.” U.S. President Ronald Reagan famously used that old Russian proverb in the 1980s to describe his approach to nuclear disarmament.
The concept applies just as much today when it comes to securing customer data. Gigya has made a significant investment in time and money to protect the 1.3 billion customer identities we manage on behalf of 700 clients worldwide. But we don’t ask you to take our word alone.
That’s why we’re proud to announce that Gigya has successfully completed a rigorous audit for the American Institute of Certified Public Accountant’s Service Organization Controls 2 Type 2 program.
SOC 2, as it’s commonly known, is an authoritative benchmark for service organizations such as Gigya to demonstrate compliance with exacting control procedures and practices, including detailed testing of operational effectives. In other words, we had to not just say the right things – we had to show we are actually doing the right things.
Administered by the global advisory services firm EY, also known as Ernst & Young, our SOC 2 audit covers Gigya’s security, confidentiality and availability practices. We also have ISO 27018 certification for our privacy protections.
SOC 2 makes Gigya an easy choice for industries that require it, such as financial services and health care, while helping to streamline the evaluation process for other prospective customers considering the Gigya platform.
The fully independent audit covered the period from November 1, 2016, to March 31, 2017, and we intend to regularly refresh our SOC 2 status so Gigya clients can continue to have hard evidence of our commitment to security.
By Gilad Sofer