Wunderkind is excited to announce that we’ve achieved a System and Organization Controls (SOC) 2, Type 2 attestation. SOC 2 is a compliance standard developed by the Auditing Standards Board of the American Institute of CPAs (AICPA) to ensure a business handles customer data appropriately and securely.
As a leading enterprise Martech company, Wunderkind takes data security very seriously. On top of being GDPR, CCPA, CAN-SPAM, CASL, and TCPA & CTIA compliant, the SOC 2 Type 2 attestation further validates Wunderkind’s ongoing commitment to data security.
“One of our core values here at Wunderkind is to respect people, privacy and ideas—and the completion of the SOC 2 Type 2 reflects just that,” said Michael Osborne, CEO SmarterHQ, a Wunderkind company. “This certification reinforces our ongoing commitment to uphold the highest industry standards and to make the security of our customers’ data our highest priority. We pride ourselves on staying ahead of today’s ever-changing privacy laws and giving our clients the much needed peace of mind that everyone is seeking around data security.”
What is SOC 2 Type 2 Compliance?
SOC 2 is a compliance standard developed by the Auditing Standards Board of the American Institute of CPAs (AICPA) to ensure a business handles customer data appropriately and securely. Type 2 certification tests the “operating effectiveness” of the controls over time (usually 12 months).
SOC 2 evaluates the operational policies, communications, procedures, and monitoring concerning five Trust Service Categories (TSC):
- Security – Information and systems are protected against unauthorized access (both physical and logical), unauthorized disclosure, and damage
- Availability – Information and systems are available for operation and use as committed
- Processing integrity – System processing is complete, valid, accurate, timely, and authorized
- Confidentiality – Confidential information is secured, and access is controlled
- Privacy – Personally Identifiable Information (PII) is appropriately collected, used, retained, disclosed, and disposed
SOC 2 certification is issued by outside auditors and is considered one of the highest standards for security accreditation.
To pass the audit, Wunderkind demonstrated that its infrastructure and data control policies adhere to the AICPA SOC 2 Type 2 guidelines for security and confidentiality—including protocols for storing and protecting sensitive data. This commitment to privacy and security is one of the many reasons why over hundreds of leading global retailers such as Forever 21, Uniqlo, Samsonite, and Sonos trust and partner with Wunderkind.
The audit of Wunderkind services was performed by A-Lign, a leading technology-enabled security and compliance partner and one of the first-ever licensed CPA firms to focus on IT audits such as SOC 2.
For enterprise retailers looking for a trusted partner to scale their marketing personalization without ever compromising on security, Wunderkind can help.