AXDRAFT is now SOC-2 Certified!
Information is one of the most valuable business assets.
All of your company's success, performance, partnerships, and plans are encoded in 0 and 1 digits and stored across multiple services. As much as this is convenient, it brings about a new level of security risks.
As a contract management software vendor, we understand the importance of data security like no other. It would be an understatement to say that contract data should be safeguarded. Contracts are the lifeblood of any business, and it is vital that they remain circulating in a closed and strictly governed system.
Contracts are the lifeblood of any business, and it is vital that they remain circulating in a closed and strictly governed system.
Here at AXDRAFT we value your trust in us above anything else, and we are deeply grateful that you chose us to aid you with your document work. As your business grows and scales with our solution, we take full responsibility for making sure that your contract data remains confidential and protected.
That is why we are constantly working on improving AXDRAFT security, and we are happy to announce that we have passed the SOC-2 Type 1 audit.
What is SOC-2 Certification?
The Service and Organization Controls (SOC-2) report is conducted by a third party auditor to prove that AXDRAFT manages data under the security protocols, protects the interests, and guarantees data integrity to all clients. The main areas subject to the certification are Policies, Communications, Procedures, and Monitoring. To get certified, we needed to comply in all of these areas.
Our passing the certification in each area is AXDRAFT’s pledge of allegiance to data security, and proof of how serious and careful we are with your sensitive data. Passing SOC-2 audit is AXDRAFT’s way of returning the trust you have in our contract management service.
Why SOC-2 Type 1, and not Type 2?
SOC-2 Type 1 certification is a point-in-time audit that assesses AXDRAFT at a given time, while Type 2 implies a lengthy audit that takes from 6 to 12 months. Type 1 is often considered as a way to “setup” for SOC-2 since Type 2 is just a Type 1 with an observation period to verify that the rules and procedures are followed on a regular basis. As we have passed Type 1 already, we are already working towards SOC-2 Type 2 certification. It will most certainly not be easy, but it will definitely be worth the effort.
What does it all mean for me?
It means that whatever information is contained inside the contracts you process inside AXDRAFT, it is safe in our system against any unauthorized use. It also means that the entire system is designed in a way that counters any possible data breaches in advance, irrespective of the volume of data being processed, and that our team adheres to security even outside our office. Finally, it means that we are protecting your sensitive data just as good if not better than most banks currently do.
If you’d like a copy of our SOC-2 certification report, please feel free to reach out to our team and we’ll be happy to share it with you.
Thank you for your trust with AXDRAFT!