Notabene’s mission is to enable crypto transactions with confidence and ease. Our end-to-end Travel Rule solution includes counterparty wallet identification tools, a VASP due-diligence directory, and a secure dashboard to manage regulated crypto transactions. Our software, tools, and comprehensive data help businesses manage counterparty risks without hindering user experience.
Our ability to carry out this comprehensive vision is contingent upon the assurance that Notabene interacts securely with our client’s existing systems and that we’ve built with security best practices in mind from day one.
Now, we can make that commitment official.
Today, we are proud to announce that our SOC 2 Type II report is clean, confirming that our information security policies, practices, procedures, and personnel exceed the high SOC 2 security standards.
1. What is SOC 2 certification?
The Association of International Certified Professional Accountants (AICPA) developed the System and Organization Controls (SOC) certification. SOC 2 to allow businesses to certify their adherence to industry security requirements thoroughly. To receive certification, an organization must codify specific security policies and procedures, continuously monitor the execution and conformance of these procedures, and annually submit documentation to a third party to ensure compliance.
2. Why is SOC 2 important?
A SOC 2 report is intended to provide assurances regarding the effectiveness of controls in place at a service organization that pertains to the security, availability, or processing integrity of the system used to process clients’ information, as well as the confidentiality or privacy of that information.
SOC 2 reports are used by businesses to identify and mitigate the risks associated with third-party technological services. Independent third-party auditors give these reports.
3. What is the process of receiving a SOC 2 certification?
AICPA examined Notabene over the course of three months and concluded with reasonable assurance that we achieved our service commitments and system requirements based on the trust services criteria relevant to security and privacy outlined in TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, Trust Services Criteria).
We would like to extend a special thanks to Vanta’s security and compliance automation platform and the fantastic team behind it.
Dozens of Notabene customers extend their trust in our team, and we’re committed to providing them with an iron-clad product. Customers can access a copy of our SOC 2 audit report upon request.