Great News: Textmagic Is Now SOC 2 Type II Certified

Great news: Textmagic is now SOC 2 type II certified

We're excited to announce that Textmagic has achieved SOC 2 Type II certification, reaffirming our dedication to top-tier data security and privacy standards. Learn how this certification benefits your business and secures your data.

Ioana Sima • September 13, 2022 • 3 min read

contents

We are happy to announce that Textmagic has achieved SOC 2 Type II compliance in accordance with the American Institute of Certified Public Accountants (AICPA). This confirms once more our commitment to providing secure services and enterprise-level security for customer’s data.

It also guarantees that our information regarding security practices, policies, procedures, and operations meets the highest security standards set by the industry.

Prescient Assurance LLC confirms SOC 2 Type 2 compliance by Textmagic AS in accordance with the AICPA’s Trust Service Criteria for Security, Confidentiality and Availability.

What this means for us

This certification confirms that our company can continue delivering business texting services at the highest security standards without compromising on data integrity. Although not mandatory, the SOC 2 certification is considered the gold standard for data security, which has always been our top priority.

The SOC 2 Type II audit was created by the American Institute of Certified Public Accountants (AICPA)

and specifies how organizations should capture, manage, and safeguard customer data.

Keeping our clients’ data safe comes first. Here is how we placed security at the forefront of our organization:

Secure personnel: Textmagic ensures that only vetted personnel have access to their resources;
Secure development: We implemented a set of best practices that support security assurance and compliance requirements in full accordance with current legislation;
Security testing: To prevent possible malware attacks, the team identified every loophole and potential system weakness and addressed them accordingly;
Cloud security: We devised a suite of security measures meant to protect cloud-based infrastructure, apps, and data.

Reaching this milestone is a recognition of our constant efforts to develop our product in a way that is fully compliant with the criteria set forth by the SOC 2 Framework.

What it means for you

The SOC 2 Type II certification confirms our commitment to quality, security, and transparency. Textmagic was audited by Prescient Assurance, a leader in security and compliance certifications for B2B and SaaS companies worldwide.

Our commitment to security

Security is not just a checkbox – it’s one of our guiding principles. Textmagic will continue taking all necessary measures so customers don’t have to worry about their data while using our services. For more information about how we safeguard your online security and take steps to secure your actions or payments on the Textmagic platform, please read our security page.

We couldn’t have done it without them

A special thank you goes out to the team, who did an amazing job ensuring we reached this important milestone. Complying with the highest security standards is a continuous job, which we will gladly carry out in the future.

Frequently Asked Questions (FAQs)

SOC compliance stands for System and Organization Controls compliance. It’s granted following a formal audit and assures customers that their data is handled with high levels of integrity and protection.

SOC 2 certification provides credible, third-party assurance that a company takes data privacy and security seriously.

This builds trust for customers, who know their information is handled according to high industry standards.

For the business, it’s a strong competitive differentiator, particularly in sectors such as SaaS, healthcare, and finance, where secure data handling is crucial.

While SOC 2 Type I looks at controls at a single point in time, Type II takes longer because it evaluates performance over an extended period.

On average, companies spend around 6 to 12 months preparing, implementing controls, undergoing a monitoring period, and completing the audit.

The certification period for SOC 2 Type II is 12 months.

Every SOC 2 report must include the Security principle from the Trust Services Criteria. It’s the core requirement because it covers essential safeguards like firewalls, access controls, and intrusion detection systems.

The remaining criteria — Availability, Confidentiality, Processing Integrity, and Privacy — are optional and can be included depending on a company’s operations and client expectations.

Think of SOC 2 and HIPAA as two different frameworks with shared goals. SOC 2 focuses on service provider trust and operational transparency, while HIPAA is specific to protecting healthcare data.

Being SOC 2 Type II certified shows you’re on the right path. Still, additional steps are needed to meet HIPAA requirements, especially regarding patient data protection and legal obligations.