Trust Center
Amberdata views security as the foundation upon which our data infrastructure is built and the trust of our customers is earned and maintained. We utilize enterprise-grade best practices to protect our customers’ data, and work with independent experts to verify our security, privacy, and compliance controls. Amberdata has achieved SOC 2 Type 1 compliance against stringent standards.
Amberdata is SOC 2 Type II Compliant
Amberdata has achieved SOC 2 Type II compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18. Achieving this standard with an unqualified opinion serves as third-party industry validation that Amberdata provides enterprise-level security for customer’s data secured in the Amberdata system.
Amberdata was audited by Prescient Assurance, a leader in security and compliance attestation for B2B, SAAS companies worldwide. Prescient Assurance is a registered public accounting in the US and Canada and provides risk management and assurance services which includes but is not limited to SOC 2, PCI, ISO, NIST, GDPR, CCPA, HIPAA, and CSA STAR.
An unqualified opinion on a SOC 2 Type II audit report demonstrates to Amberdata’s current and future customers that we manage their data with the highest standard of security and compliance.
Amberdata is SOC 2 Type 1 Compliant
Amberdata has achieved SOC 2 Type 1 compliance with a 100% clean (unqualified) SOC 2 Type 1 attestation report. This rigorous, independent assessment of our internal security controls serves as validation of our dedication and adherence to the highest standards for security, availability, and processing integrity.
Conducted by Prescient Assurance, this attestation report affirms that Amberdata’s information security practices, policies, procedures, and operations meet the rigorous compliances SOC 2 Trust Service Criteria for security, availability, and processing integrity. Prescient Assurance is a registered public accounting firm in the US and Canada and provides risk management and assurance services which includes but is not limited to SOC 2, PCI, ISO, NIST, GDPR, CCPA, HIPAA, and CSA STAR.
Developed by the AICPA, SOC 2 is an extensive auditing procedure that ensures that a company is handling customer data securely and in a manner that protects the organization as well as the privacy of its customers. SOC 2 is designed for service providers storing customer data in the cloud.
Continuous Monitoring
Amberdata uses Drata’s automated platform to continuously monitor its internal security controls against the highest possible standards. With Drata, Amberdata has real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems.