DinMo is Now Soc 2 Compliant!
4min • Jun 18, 2024 • Last updated on Sep 23, 2024
Nils Hasselmark
Product Manager
Customer trust and data privacy and data security have always been critical to everything we do. From the beginning, our aim has been to build a product that is beyond reproach in terms of safety. DinMo has been designed to work on top of your cloud data warehouse, rather than storing the data itself.
Using the powerful capabilities of cloud data warehouse, DinMo is able to perform all workloads within your own data infrastructure.
Unlike other data platforms you may have used, this Composable CDP approach is inherently more secure and easily ensures regulations compliance (GDPR and CCPA).
While the architecture of DinMo is secure by design, it doesn’t mean that we do not need to complete regular security-design reviews and conduct regular audits.
🚀 Today, we’re happy to announce that we are now SOC 2 Type 2 Compliant!
What is SOC 2?
SOC 2 or Service Organization Controls 2 is a framework that is governed by the American Institute of Certified Public Accountants (AICPA). With a SOC 2 audit, an independent service auditor will review an organization’s policies, procedures, and evidence to determine if their controls are designed and operating effectively. A SOC 2 report communicates a company’s commitment to data security and protection of customer information.
DinMo received certification for the following principles:
Security: we protect customer information during enrichment, use, processing and transmission
Confidentiality: we always protect confidential data by encrypting it at rest and protecting it in transit
Availability: Our product is available to everyone and our monitoring and maintenance processes have been approved
Why SOC 2 is important?
Improving your security posture
SOC 2 compliance exemplifies an organization’s commitment to their customer’s trust. It is a major milestone towards improving our overall security posture. With increasing cybersecurity threats and data breaches, it is paramount that organizations prioritize information security and the protection of their systems and data. By undergoing a SOC 2 audit, our controls and processes were validated by a third-party who attests to the functioning of the controls relevant to our application.
Why we pursued SOC 2 now
SOC 2 compliance is an integral step in proving to customers, stakeholders, and interested parties that our organization values their trust and has effectively implemented security controls. At our company’s stage, we realized that it was an ideal time to pursue this as it is important to protect data and mitigate potential security risks early and on an ongoing basis.
We will continue to maintain our processes and be audited by third-party auditors yearly.
All of our cloud providers are SOC 2 Compliant
In addition to being SOC 2 Compliant, we only use cloud providers (AWS, GCP ans Snowflake) which also are SOC 2 compliant. These providers are dedicated to ensuring their data centers are secure.
DinMo’s journey to SOC 2 compliance
Compliance Partners
Vanta
We partnered with Vanta, the leader in the Trust Management space, to help us automate the collection of our audit evidence. Vanta provides us with the strongest security foundation to protect our customer data.
Advantage Partners
Our audit firm, Advantage Partners, was extremely helpful in creating a seamless audit experience. With their guidance and support, we were able to achieve SOC 2 compliance in a swift, efficient manner.
Process
While SOC 2 can be a big undertaking, our compliance partners streamlined the process. We leveraged Vanta to integrate our key systems and guide us in implementing policies and procedures to quickly become audit ready. Vanta gave us the direction we needed to pursue our compliance journey.
Advantage Partners then confirmed our audit readiness and we kicked off our Type II audit. For the audit, Advantage evaluated the controls we have in place and opined on their state. Shortly after our audit window ended, Advantage Partners drafted and issued our report.
Get our Report
If you are an existing customer or are considering using DinMo, feel free to reach out to us (hello@dinmo.com) to get our SOC 2 audit report!