Signal Sciences is proud to announce that it has achieved Service Organization Control (SOC) 2 Type 2 and Health Insurance Portability and Accountability Act (HIPAA) Type 1 compliance for our next-generation web application firewall (WAF) and Cloud WAF.
Protecting and securing the data of our customers and their customers is our priority—and these achievements are the latest in Signal Sicences’s ongoing commitment towards maintaining the highest standards in data security and privacy.
Walking the walk with SOC 2 Type 2 certification
SOC 2 compliance certification is an attestation standard defined by the American Institute of Certified Public Accountants (AICPA). SOC 2 certifies that our data and information security practices, policies, and procedures for handling sensitive data are officially approved to meet the SOC trust principles criteria for security, availability, processing integrity, and confidentiality. To attain System and Organization Controls (SOC) certification, Signal Sciences’s controls were reviewed by an independent auditor against the criteria set forth by the AICPA.
In February 2019, the organization attained SOC 2 Type 1 as its first step toward recognizing this commitment. While achieving SOC 2 Type 1 compliance was an important milestone, Type 2 is a bigger accomplishment. We can now say we “walk the walk”, not just “talk the talk”.
SOC 2 compliance allows our customers to fully adopt and take advantage of our WAF services, without worrying about risks to their products and their customers. By attaining this certification, our customers can be confident that the WAF and RASP solution they rely on meets industry standards. They can spend less time worrying about compliance, and use their time to utilize our product optimally instead.
HIPAA: Keeping protected healthcare information safe
HIPAA enforces standards for personal healthcare data: the U.S. HIPAA, as amended, including Health Information Technology for Economic and Clinical Health (HITECH) Act, is a federal law that enables healthcare companies to incorporate technology into their businesses while ensuring data privacy and security.
Our HIPAA compliance provides our healthcare customers the confidence that we are keeping protected healthcare information (PHI) safe from harm. As more healthcare records go digital, it increases the risk that PHI could be exposed through a breach We’ve implemented various privacy guardrails to ensure our products don’t expose this information to the public.
Our commitment to the highest security standards
Signal Sciences is committed to providing and meeting the highest security standards for ourselves and our customers. We are continuing to work on other accreditations and certifications, and are collaborating closely with our security, product, and engineering teams to maintain this level of security.
Learn more about our security and compliance certifications here.