SOC 2 Compliance

Owned by Kai Cowger
Last updated: Jul 09, 2024 by Gillian Javetski
1 min read

This page details Dimagi’s SOC 2 Status, and how to request a SOC 2 Report.

image-20240708-145010.png

About SOC 2

SOC 2 (Service Organization Control 2) is an auditing standard for assessing an organization's controls related to the Trust Services Criteria: security, availability, processing integrity, confidentiality, and privacy of data. It ensures that a service provider securely manages data to protect the privacy and interests of its clients.

SOC 2 has two types of reports:

  1. Type I evaluates how an organization’s security controls function at a specific point in time. It is often a one time evaluation of an organization’s security posture.

  2. Type II are more comprehensive and evaluates how an organization’s security controls function over a longer period of time. Type II reports evaluate how well an organization adheres to stated security policies through their controls on a recurring basis (typically over a year), often evaluated by third-party independent auditors.

Compliance

Dimagi achieved Type I certification in 2021 and is currently Type II certified since 2022.

If you are actively considering CommCare, you are welcome to request a SOC2 report to support your evaluation process. All requests should be made to support@dimagi.com.