What is SOC-2?

SOC-2 is a Service Organization and Control certification for organizations, providing the highest standards of industry-recognized security accreditation. The standard is defined by AICPA (The Americal Institute of Certified Public Accountants) and includes a comprehensive company audit on 5 trust principles:

  • Security
  • Availability
  • Processing Integrity
  • Confidentiality
  • Privacy

While SOC-1 is a snapshot audit, meaning a company is evaluated at a single point in time, SOC-2 is an audit performed over a 6-month period, proving that controls have been running and audited over the entire time period.

The audit was performed by Linford and Company, specialists in compliance and attestation services.

Why does SOC-2 matter?

Emedgene works with hospitals, labs, medical centers that handle confidential patient information. Security is of paramount importance to every single one of our customers. When they entrust their data to our cloud and our employees, they should have assurances that we are continuously and actively implementing security measures across our entire organization.

We have been heavily focused on security over the past couple of years, and the SOC-2 review process was highly beneficial in pushing our standards even higher.

What’s next?

As security standards for our customers evolve, we will as well. Our goal is to make implementation – even in the most secure organizations – as smooth and easy as possible. Security and IT shouldn’t be a roadblock for any healthcare organization that wants to implement AI-driven genomics analysis. To that end, we will continue improving our security policies and ensure adherence to the standards that matter to our customers.

SOC-2 Certificate
Recent Posts