SOC 2 reports are intended to meet the needs of a broad range of users that need to understand internal control at a service organization as it relates to applicable Trust Services Principles and Criteria which include security, availability, processing integrity, confidentiality and privacy trust principles.
A Type II reports on the fairness of presentation of management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls over a period of time, not just a point in time.
The SOC 2 Type II report provides a detailed review, by an independent audit firm, of Unqork’s security, availability, and confidentiality controls. Unqork undergoes annual SOC 2 Type 2 examinations to attest for those security requirements.
As per definition of the General Data Protection Regulation (GDPR) Unqork processes client data as a Data Processor, on behalf of its enterprise clients (the Data Controllers).
Our organization and platform respond to, and allow our clients to comply with privacy regulations such as the GDPR, and the California Consumer Privacy Act (CCPA).
The United States Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulates the security and privacy of Protected Health Information (PHI).
Unqork abides by HIPAA security requirements, and the Unqork platform supports HIPAA compliant applications. With HIPAA compliance, customers can securely process and store protected health information (PHI) after executing a Business Associate Agreement.