Code Climate Announces Soc 2 Type 1 Compliance

We’re proud to announce that as of August 31, 2020, Code Climate has reinforced its commitment to your security by becoming SOC 2 Type 1 compliant. Along with our existing security protocols, this new certification is representative of our ongoing efforts to ensure the safety of our customers’ data.

This dedication to security is critical to fulfilling our mission and empowering engineering organizations to achieve excellence with data-driven insights.

What is SOC 2 Compliance?

SOC 2, or Service Organization Controls 2, is an accreditation developed by the American Institute of CPAs (AICPA). To qualify for SOC 2, an organization must demonstrate that it has controls in place to ensure the security, availability, and processing integrity of users’ data. It’s a confirmation of an organization’s commitment to maintaining its customers’ privacy.

Type 1 certification requires the completion of a security audit by an independent, third-party accounting and auditing firm, and indicates that Code Climate currently has processes, procedures, and controls in place to ensure the security of our Engineering Intelligence System and safeguard our customers’ data. It also represents the start of a six-month review period, during which we’ll demonstrate our longterm ability to uphold these procedures, a prerequisite for achieving SOC 2 Type 2 certification.

Why SOC 2?

We value the trust our customers place in us and are committed to maintaining that trust by continually evaluating and improving upon our security protocols. SOC 2 is an opportunity to put those protocols to the test, and to demonstrate our ongoing dedication to data security.

Vendors and partners with compliance requirements are now able to request a copy of Code Climate’s SOC 2 Type 1 report as part of their compliance strategy.