SOC 2
Glossary Terms
AICPA
The AICPA is the originator of the SOC (System and Organization Controls) audit and reporting standards. Find out more about the AICPA now!
SOC 1
A SOC 1 report is documentation of the internal controls that are likely to be relevant to an audit of a customer's financial reporting. Find out more about SOC 1 now.
SOC 2 Type I report
A SOC 2 Type I report attests to a company’s security rules at a specific point in time.
SOC 2 Type II report
Trying to find the answer to 'What is a SOC 2 Type II report?' Vanta's got you covered. Click here to learn more about SOC 2 Type II report.
SOC 2 AUD
SOC auditors are CPAs who work with the SOC suite to evaluate and report on the controls in place at an organization. Find out more about SOC auditors now.
SOC 2 compliance
SOC 2 compliance defines controls for managing customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality and privacy. Find out more about SOC 2 now.
SOC 3
A SOC 3 Report covers the same basic materials and concerns of a SOC 2 Report, but it only distributes the auditor’s report without including description of the tests and their results. Find out more about SOC 3 now.
SOC TSC
The five Trust Services Criteria comprise the evaluation structure of a SOC 2 audit and report. Find out more about the trust services criteria now!