HeadSpin has achieved a SOC 2 Type 2 certification as of 20th July,2022. The SOC auditors reviewed, assessed and validated HeadSpin, Inc.’s relevant security and design controls pertaining to Security, Availability, Confidentiality and have provided assurance that HeadSpin’s service commitments and system requirements were achieved based on the trust services criteria relevant to security, availability, and confidentiality (applicable trust services criteria) set forth in TSP Section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, Trust Services Criteria).
SOC 2 is intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to security, availability and confidentiality of the systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems. This report plays an important role in:
- Oversight of the organization
- Vendor management programs
- Internal corporate governance and risk management processes
- Regulatory oversight
The SOC auditors have thus determined that HeadSpin, Inc. has effective security and design controls in place as it relates to the applicable data in scope pursuant to the SOC 2 framework as well as other equivalent security measures.