Orb achieves SOC 2 Type II compliance

Orb is pleased to announce that we are SOC 2 Type II certified based on the trust services criteria in Security, Availability, and Confidentiality. Since our launch, data privacy and security have been a top priority, and this third-party validation is an important milestone toward our continuous goal of ensuring the highest safety and compliance standards for our customers. 

All companies that handle customer data must have safeguards in place to protect this sensitive information, and SOC 2 Type II is considered a gold standard when it comes to data security and privacy. Issued by the American Institute of Certified Public Accounts or AICPA, SOC 2 Type II is an independent audit methodology that assesses how well an organization complies with data storage and management standards. All companies that obtain this certification have undergone a rigorous audit of their processes and have been found to meet or exceed the outlined requirements.

Data security at Orb is not a “one-and-done” event; our team understands how sensitive your billing and revenue data is and the critical role that you allow Orb to play in your financial processes when you choose us as a vendor. At Orb, we commit to an ongoing compliance program, with policies in place to ensure employee security training, vendor review, and access controls. In concert with AWS, our cloud provider, Orb encrypts data at rest, protects the cloud network environment from intrusion, and employs audit logging for change management.

More information about SOC 2 Type II certification can be found on the official AICPA website. If you have additional questions, please reach out to security@withorb.com