What does SOC 2 Type II mean and how does it affect me?

SOC 2 Type II Certified

What is it?

The Question arises of what exactly SOC 2 Type II security certification is, and I am here to answer it. The SOC 2 Type II Report is "designed for the growing number of technology and cloud computing entities that are becoming very common in the world of service organizations," according to ssae-16.com. To get this issued to an organization, it will be followed by a 6-12 month audit of every facet of the organization; including the financial stability and longevity of the company, documenting every procedure, firewall security, disaster recovery, secure protocols for database access, and ensuring security compliance among all employees.

Having a SOC 2 report means the data is stored and processed securely and usually reserved for financial institutions for the level of encryption. The difference between a SOC 1 and SOC 2 report is SOC 1 reports are "important components of user entities' evaluation of their internal controls over financial reporting for purposes of complying with laws and regulations," (aicpa.org), whereas SOC 2 reports "are intended to meet the needs of a broad range of users that need to understand internal control at a service organization as it relates to security, availability, processing integrity, confidentiality, and privacy." (aicpa.org). A company with SOC 2 Type II audit report can offer comprehensive data security.

Does it matter for me?

How does this affect me? If your company uses a partner for collection, processing, and retention of sensitive information it is best practice to make sure the data is secure, as well as asking other pertinent information for your specific capital project planning needs. SOC 2 Type II is paramount for owners dealing with capital construction projects that need to manage multiple moving parts. Knowing that your data is secure and that it does not contain vulnerabilities similar to other enterprise software that can have issues with role authentication and budgetary information is crucial. Because Projectmates software is role based and data is kept in protected locations with secure encryption you can rest assured that your data is safe and projects are optimized with the best solution available.

Do you value?

If you answered yes to the above make sure to inquire about the latest audit and the prospective partner is SOC 2 Type II compliant. Projectmates is proud to be SOC 2 Type II certified.

Related Articles


How a Construction Project Management Software Can Improve Efficiency (and save the world)

When the average person hears the words “construction industry” it is unlikely that the first thoughts to pop into their head are synonymous with the environment, conservation, or sustainability, but..

Read more
Kum & Go New Corporate HQ in Des Moines Iowa

The Projectmates Team Congratulates Kum & Go for their prestigious New Corporate Headquarters

Photo Courtesy of the Renzo Piano Building Workshop In 2015, Kum & Go announced that the world-famous Renzo Piano would be designing its new HQ in Des Moines, Iowa. The building, dubbed as the “Krause..

Read more

Blog Sign Up

Enjoy what you're reading? Subscribe to receive the latest news in construction management.

Featured Post

Don't Miss the Latest: What's New in Projectmates 18.5

Don't Miss the Latest: What's New in Projectmates 18.5

If you missed the recent webinar on Projectmates new version release, don't worry! Here is a recap of all the new features.

Read more

Latest Tweets