Givecloud Achieves SOC 2 Compliance: A Commitment to Data Security

What is SOC 2 & Why is it important?

SOC 2 or Service Organization Controls 2 is a framework that is governed by the American Institute of Certified Public Accountants (AICPA). With a SOC 2 audit, an independent service auditor will review an organization’s policies, procedures, and evidence to determine if their controls are designed and operating effectively. A SOC 2 report communicates a company’s commitment to data security and protection of customer information.??

Improving your security posture?

SOC 2 compliance exemplifies an organization’s commitment to their customer’s trust and is a major milestone towards improving their overall security posture. With increasing cybersecurity threats and data breaches, it is paramount that organizations prioritize information security and the protection of their systems and data. By undergoing a SOC 2 audit, our controls and processes were validated by a third-party who attests to the functioning of the controls relevant to the Givecloud platform.?

Why We Pursued SOC 2 Now

For Givecloud, SOC 2 compliance is an integral step in demonstrating to nonprofits, partners, stakeholders, and other interested parties that Givecloud values their trust and has effectively implemented security controls.?

At our current stage of growth, we recognized that pursuing SOC 2 compliance was essential for safeguarding sensitive data and mitigating potential security risks both now and in the future.

We are committed to maintaining nonprofits' trust by implementing robust security measures that protect their data. By achieving SOC 2 compliance, we aim to reassure our nonprofit partners that we take their data security seriously and are dedicated to continual improvement.

Understanding Our Commitment to Security:

• As a growing organization dedicated to providing secure solutions for nonprofits, we recognize the critical importance of nonprofit trust.
• Our commitment to improving our security posture reflects our mission to serve nonprofits effectively and responsibly.
• Completing SOC 2 compliance is aligned with our goal of enhancing our operational capabilities and ensuring we are prepared for future growth.
• We received our SOC 2 Type II auditor’s report on September 23, 2024, and are committed to renewing our SOC 2 compliance annually to ensure ongoing adherence to security standards.

Our Compliance Partners

• Vanta We partnered with Vanta, a leader in the Trust Management space, to help us automate the collection of our audit evidence. Vanta provides us with the strongest security foundation to protect our nonprofit data.
• Advantage Partners Our audit firm, Advantage Partners, was instrumental in creating a seamless audit experience. With their guidance and support, we achieved SOC 2 compliance swiftly and efficiently.

We are incredibly proud to announce that Givecloud has achieved SOC 2 compliance. This milestone underscores our unwavering commitment to providing a safe and secure solution for nonprofits. We understand that the trust of our nonprofit partners is paramount, and we will continue to prioritize security in all aspects of our operations.?

As we move forward, we remain dedicated to enhancing our security posture and ensuring that the sensitive data of nonprofits is safeguarded against emerging threats. Together, we can build a more secure future for the nonprofit sector.