Data Matters. Security Matters.
At dxFeed, we are committed to ensuring the highest data security and privacy standards for our customers. To achieve this, we invest both our resources and efforts to effectively manage and mitigate our products’ inherent risks. Our comprehensive approach embraces optimization to create an environment of confidence and reliability.
We ensure that we stay current with all required certifications, allowing our customers and partners to entirely focus on their business endeavors. The independently audited assurances of our compliance and commitment will provide peace of mind.
We understand that trust is the foundation of any successful partnership. As part of our dedication to transparency and trust, we have successfully completed a SOC 2 Type 2 audit with Ebner Stolz, an independent external auditing provider and a member of Nexia International. Obtaining SOC 2 Type 2 compliance demonstrates our ongoing commitment to safeguarding your data and upholding the utmost security standards.
Our Security Standards
Reliability and resilience
We guarantee that our customers receive enhanced market data without loss and delays thanks to our approach to data normalization processes and services hosting
Monitoring
24/7/365 oversight and assessment of our services ensures that our systems are operating as intended, enabling us to swiftly take any necessary emergency measures
Centralized approach
Our cohesive framework aimed at consistent monitoring, swift response to incidents, and uniform secure measures provides end user with secure and seamless experience
About SOC
System and Organization Controls (SOC) for Service Organizations are internal control reports created by the American Institute of Certified Public Accountants (AICPA). These assessments investigate services provided by a service organization to help end users assess and address risks associated with an outsourced service.
SOC 2 Overview
SOC 2 is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants’ and based on Trust Services Criteria (TSC). It focuses on the controls and processes implemented by service organizations to protect customer data.
SOC 2 Type 2 reports are designed to evaluate organization’s information systems relevant to security, availability, processing integrity, confidentiality, and privacy over a period of time.
A SOC 2 attestation is performed under
- SSAE No. 18, Attestation Standards: Clarification and Recodification, which includes AT-C section 105, Concepts Common to All Attestation Engagements, and AT-C section 205, Examination Engagements (AICPA, Professional Standards).
- SOC 2 Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (AICPA Guide).
- TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, 2017 Trust Services Criteria).
A SOC 2 audit results in the auditor’s assessment within a SOC 2 report. This report describes the cloud service provider’s (CSP’s) system and assesses the fairness of the CSP’s description of its controls. It also evaluates whether the CSP’s controls are designed appropriately, were in operation on a specified date, and were operating effectively over a specified period.
SOC 2 Type 2 compliance is a rigorous process that provides an objective evaluation of our commitment to data security and our ability to maintain these controls consistently over time. This ensures that our customers can confidently rely on dxFeed’s services to manage their sensitive data with the utmost care.
