SOC 2 Compliance

Securing your privacy is of vital importance to us. That's why Absorb undertook the rigorous process of pursuing SOC 2 compliance, successfully completing the SOC 2 Type 2 examination for Security, Availability, and Confidentiality. It's a standard few in the LMS industry can claim.

Why SOC 2 Compliance Matters in an LMS

Adhering to the 157 controls in the SOC 2 Type 2 standard, means that Absorb is more robust in terms of data security than competitors who do not have a SOC 2 report. Having a successful SOC 2 Type 2 examination gives Absorb clients confidence that we are diligent in how we protect their data.

By meeting SOC 2 Type 2 examination standards, Absorb ensures safeguards are not only in place—but effective in protecting personal information.

FAQs about LMS SOC 2 compliance

Why is it important that my LMS is SOC 2 compliant?

Choosing a SOC 2-compliant LMS provides peace of mind that every reasonable measure has been taken to protect your data. That's because SOC 2 examinations are completed regularly and the criteria are updated to reflect security threats as they evolve.

Is SOC 2 compliance required?

No, SOC 2 compliance is completely voluntary. That's part of what makes it such a strong indicator of our commitment to protecting your LMS data.

What types of controls are required for SOC 2 compliance? 

Successfully completing the SOC 2 Type 2 examinations for Security and Availability required Absorb to demonstrate effective implementation of

1. Network/application firewalls

2. Two-factor authentication

3. Intrusion detection

4. Performance monitoring

5. Disaster recovery

6. Security incident handling

Have Questions?