Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters
Blogs
Events
Glossary
Guides and reports

Follow us

Linkedin iconFacebook icontwitter iconinstagram icon

What is a SOC 3?

You can think of a SOC 3 report as a redacted SOC 2 report; the SOC 3 report summarizes the material of a SOC 2 report, but it excludes details of the testing that was performed and those tests’ results. A SOC 2 report must have been written to receive a SOC 3 report.

SOC 3 reports can be posted on your website, while SOC 2 reports can only be shared with an NDA.

Read more about SOC 2 reports here.

Related Terms

Additional resources you might like:

SOC 2
Events
Demo: Automating Compliance for SOC 2, ISO 27001, HIPAA, and More

Join our demo to learn how Vanta helps organizations streamline compliance for frameworks like SOC 2, ISO 27001, HIPAA, and more.

Comparisons and reviews
Blog
Why enterprise leaders choose Vanta over Drata to prove and manage trust

Learn how Vanta is uniquely equipped to meet the needs of large, complex organizations.

Vendor Risk Management
Events
Demo: Navigating Third-Party Risk Through Vanta’s Vendor Risk Management

Register for our product demo that will showcase Vanta’s Vendor Risk Management Solution.

Additional resources you might like:

SOC 2
Events
Demo: Automating Compliance for SOC 2, ISO 27001, HIPAA, and More

Join our demo to learn how Vanta helps organizations streamline compliance for frameworks like SOC 2, ISO 27001, HIPAA, and more.

Comparisons and reviews
Blog
Why enterprise leaders choose Vanta over Drata to prove and manage trust

Learn how Vanta is uniquely equipped to meet the needs of large, complex organizations.

Vendor Risk Management
Events
Demo: Navigating Third-Party Risk Through Vanta’s Vendor Risk Management

Register for our product demo that will showcase Vanta’s Vendor Risk Management Solution.

GRC
Events
Turning Chaos Into Clarity: Continuous Security at Scale

Join Vanta’s GRC expert to learn how automated, continuous trust management replaces manual processes, helps you stay audit-ready, strengthens risk insights, and turns your GRC program into a business advantage.

SOC 2
Events
Demo: Accelerate security and compliance workflows with AI

Tune in for this live demo that will showcase how Vanta simplifies compliance, centralises security workflows, and automates evidence collection across 35+ frameworks like SOC 2, ISO 27001 and more.

GRC
Events
The New Rules of Trust: Compliance, Risk, and AI

Watch on-demand as Ashish Rajan, CISO at Kaizenteq (and host of the Cloud Security Podcast), and Faisal Khan, GRC Subject Matter Expert at Vanta have a tactical conversation on what it really takes to mature compliance, risk, and trust in the age of AI.

Compliance
Guide / Report
The ultimate guide to FedRAMP: A requirements guide for authorization

Learn about FedRAMP authorization, from impact levels to compliance steps, to unlock opportunities with U.S. federal agencies.

Compliance
Events
Secure from the Start: How Founders Build Compliance Into Early-Stage Growth

Hear from the Head of Information Security at Robin AI and the Co-Founder & CEO of Pavlov as they share how they embedded security and compliance into their startup journey, without slowing down innovation.

Compliance
Events
Building Trust in the AI Boom: Security, Capital, and Credibility from Day One

Join the CFOs of Vanta and Mercury for a tactical conversation on how early-stage teams can build trust with investors and buyers, without slowing down.

Get compliant and build trust—fast

Request a demo
G2 Badge 2025 - Best Software | Top 50 Governance, Risk, & Compliance ProductsG2 Badge 2025 - Best Software | Top 50 Security ProductsG2 Badge 2025 - Best Software | Top 100 Best Software Products