SOC 2

Definition

SOC 2 (System and Organization Controls 2) is the AICPA-defined audit framework for service organizations across five trust criteria: security, availability, processing integrity, confidentiality, and privacy. Type I attests controls design at a point in time; Type II attests operating effectiveness across a 6-12 month observation window — the version enterprise customers expect. SOC 2 reports are not certifications but independent CPA opinions. FI Tech maintains SOC 2 Type II for its cloud-hosted analytics dashboards and customer telemetry pipelines, audited annually by a Big-Four firm. Reports under NDA available to Saudi enterprise customers during procurement.