At dxFeed, we are committed to ensuring the highest data security and privacy standards for our customers. To achieve this, we invest both our resources and efforts to effectively manage and mitigate our products’ inherent risks. Our comprehensive approach embraces optimization to create an environment of confidence and reliability
We ensure that we stay current with all required certifications, allowing you to entirely focus on your business endeavors. The independently audited assurances of our compliance and commitment will grant you peace of mind.
We understand that trust is the foundation of any successful partnership. As part of our dedication to transparency and trust, we have successfully completed a SOC 2 Type 2 audit with Ebner Stolz, an independent external auditing provider and a member of Nexia International. Obtaining SOC 2 Type 2 compliance demonstrates our ongoing commitment to safeguarding your data and upholding the utmost security standards
Our Security Standards
System and Organization Controls (SOC) for Service Organizations are internal control reports created by the American Institute of Certified Public Accountants (AICPA). These assessments investigate services provided by a service organization to help end users assess and address risks associated with an outsourced service
SOC 2 Overview
SOC 2 is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants’ and based on Trust Services Criteria (TSC). It focuses on the controls and processes implemented by service organizations to protect customer data.
SOC 2 Type 2 reports are designed to evaluate organization’s information systems relevant to security, availability, processing integrity, confidentiality, and privacy over a period of time.
A SOC 2 attestation is performed under
- SSAE No. 18, Attestation Standards: Clarification and Recodification, which includes AT-C section 105, Concepts Common to All Attestation Engagements, and AT-C section 205, Examination Engagements (AICPA, Professional Standards).
- SOC 2 Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (AICPA Guide).
- TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, 2017 Trust Services Criteria).
A SOC 2 audit results in the auditor’s assessment within a SOC 2 report. This report describes the cloud service provider’s (CSP’s) system and assesses the fairness of the CSP’s description of its controls. It also evaluates whether the CSP’s controls are designed appropriately, were in operation on a specified date, and were operating effectively over a specified period.
SOC 2 Type 2 compliance is a rigorous process that provides an objective evaluation of our commitment to data security and our ability to maintain these controls consistently over time. This ensures that our customers can confidently rely on dxFeed’s services to manage their sensitive data with the utmost care.