SOC 2 Type 1 vs Type 2: What’s the Difference?

by Joseph Kirkpatrick / February 14, 2024

What is a SOC 2 Audit? A SOC 2 audit is an audit of a service organization’s non-financial reporting controls as they relate to the Trust Services Criteria – the security, availability, processing integrity, confidentiality, and privacy of a system. A SOC 2 audit report provides user entities with reasonable assurance and peace of mind that the non-financial reporting controls at a service organization are suitably designed, in place, and appropriately…

SOC 2 Report Criteria and FAQs

by Joseph Kirkpatrick / December 20, 2022

SOC 2 FAQs When a client pursues a SOC 2 audit for the first-time, they normally ask: What are the requirements of a SOC 2 audit? How are we going to be judged? What can I do to prepare? Which Trust Services Criteria should I select? KirkpatrickPrice strives to be your audit partner and will work with your organization to answer each of these SOC 2 FAQs. Preparing for a…

What Will Be in My SOC 2 Report?

by Maggie Austin / December 20, 2022

The Seven Components of a SOC 2 Report You’ve partnered with a licensed CPA firm, you’ve properly scoped your environment, you’ve conducted a SOC 2 gap analysis, you’ve remedied any non-compliant findings, you’ve worked with your auditor, you’ve completed your SOC 2 audit and achieved SOC 2 compliance, and now you’re finally receiving your SOC 2 report. Congratulations! You may be wondering, what will be in my SOC 2 report?…

What is the Purpose of the SOC 2 Privacy Principle?

by Sarah Harvey / December 20, 2022

 Why Choose the Privacy Principle? Once you’ve determined you are ready to pursue a SOC 2 audit report, the first thing you have to decide is which of the five Trust Services Criteria you want to include in your SOC 2 audit report. Typically, service organizations that are concerned about the Privacy Principle are collecting, using, retaining, disclosing, and/or disposing of personal information to deliver their services. A classic…

What Is The SOC 2 Security Principle?

by Sarah Harvey / December 22, 2022

History of the SOC 2 Trust Services Principles The Service Organization Control 2 (SOC 2) Report focuses on non-financial controls at an organization as they relate to security, availability, processing integrity, confidentiality, and privacy. These are also known as the Trust Services Principles. In 2014, the SOC 2 Trust Services Principles were updated, and one of the major changes was to the SOC 2 security principle. This change to the…