SOC 2 Compliance
Securing your privacy is of vital importance to us. That's why Absorb undertook the rigorous process of pursuing SOC 2 compliance, successfully completing the SOC 2 Type 2 examination for Security and Availability. It's a standard few in the LMS industry can claim.
Why SOC 2 Compliance Matters in an LMS
Adhering to the 157 controls in the SOC 2 Type 2 standard, means that Absorb is more robust in terms of data security than competitors who do not have a SOC 2 report. Having a successful SOC 2 Type 2 examination gives Absorb clients confidence that we are diligent in how we protect their data.
By meeting SOC 2 Type 2 examination standards, Absorb ensures safeguards are not only in place—but effective in protecting personal information.
FAQs about LMS SOC 2 compliance
Why is it important that my LMS is SOC 2 compliant?
Choosing a SOC 2-compliant LMS provides peace of mind that every reasonable measure has been taken to protect your data. That's because SOC 2 examinations are completed regularly and the criteria are updated to reflect security threats as they evolve.
Is SOC 2 compliance required?
No, SOC 2 compliance is completely voluntary. That's part of what makes it such a strong indicator of our commitment to protecting your LMS data.
What types of controls are required for SOC 2 compliance?
Successfully completing the SOC 2 Type 2 examinations for Security and Availability required Absorb to demonstrate effective implementation of:
1. Network/application firewalls
2. Two-factor authentication
3. Intrusion detection
4. Performance monitoring
5. Disaster recovery
6. Security incident handling