| By: Jonathan Ivarsson

Building on your trust: Announcing our SOC 2 compliance

It’s not enough to build a great product, if it can’t be trusted. That’s why we’re committed to providing the highest level of security to our clients, and are excited to announce our SOC 2 compliance.

The highest recognized accreditation for our industry

We’ve been pursuing the highest standards of industry-recognized accreditation so all our customers can trust our policies and procedures. So, we’re proud to announce that we have passed our recent Service and Organisation Controls audit. To prove it, we’ve been awarded a shiny sticker together with a SOC 2 Type 1 report!

“We are proud to announce that we have successfully demonstrated a mature and reliable commitment to protecting our customers data”

These audits provide an industry-wide recognition that companies conform to the American Institute of Certified Public Accountants (“AICPA”) SOC 2 standard. This measures security, availability, and serves as assurance that your data is being managed in a controlled and audited environment.

Why does SOC 2 matter?

Onlive allows you to collect personal identifiable information (PII), or customer data, through online events.  We’ve always focused on the security of your data so you can focus on acquiring, engaging and maintaining your attendees.

“We focus on the security of your data so that you can focus on your attendees”

Announcing our compliance means that we (in addition to annual security tests) have put in place the necessary practices and controls to meet the criteria for establishing that we are a trustworthy company. This includes 100+ controls for formalizing our privacy policy, implementing a security program, and establishing robust data handling procedures.

Why did we seek SOC 2 attestation instead of ISO27001 certification?

SOC 2 and ISO27001 are both standards that are used to measure the security of cloud computing environments. This is because both of cover the risk management process, which is essential in establishing a secure environment.

The SOC 2 standard is better at dealing with cloud security because it’s more specific and in-depth than the ISO27001. This means that it has much more detail about how to maintain security in a cloud environment. It also deals with both data and information security. Which is crucial to ensure that all data on the cloud environment is safe. Including, making sure that all geo-locations for data are secure and protected from cyber attacks.

Continuous improvement in privacy and security

This is not the end of the SOC 2 process for Onlive, we are committed to continuously monitor our controls. In the near future we aim to achieve the SOC 2 Type-2 attestation, building on what we’ve put in place. With this, we hope to keep supporting our customers’ needs as they evolve.

Want to know more? Please feel free to reach out to the team and we would be happy to talk to you further!