Freeplay has achieved SOC 2 Type 1 Certification — a rigorous industry standard that demonstrates our commitment to maintaining the highest levels of security and trust. This certification underscores our commitment to providing a secure and compliant platform for businesses of all sizes, and builds on our standard enterprise-tier features for data privacy & security like Private Hosting.
Understanding SOC 2 Compliance
SOC 2 (System and Organization Controls 2) is an auditing standard developed by the American Institute of Certified Public Accountants (AICPA). It ensures that service providers securely manage data to protect their customers' interests and privacy.
Achieving SOC 2 compliance involves a thorough evaluation of a company's systems, processes, and controls for protecting customer data and more. An independent third-party auditor assesses various aspects, including access controls, network security, incident response, and risk management.
Freeplay's Comprehensive Approach to Trust
At Freeplay, we see SOC 2 compliance as one part of building a comprehensive security framework. In addition to meeting the standards set by the AICPA, we have implemented advanced security measures to further protect our customers' data.
For example, we use enterprise-grade key management systems and employ Argon2, a state-of-the-art encryption algorithm that provides strong security and resistance against various types of attacks. These systems ensure that customer keys are properly generated, stored, and managed, providing an additional layer of protection against unauthorized access.
For customers with heightened data security requirements, Freeplay offers a private hosting solution that utilizes a secure and highly available site-to-site VPN connection. This allows you to keep your data within your own infrastructure — providing an additional layer of control and security.
Freeplay policies that cover all five trust categories for SOC 2 certification:
Security: Protecting against unauthorized access, disclosure, and modification of data.
Availability: Ensuring systems and data are accessible when needed.
Processing Integrity: Maintaining accuracy, completeness, and timeliness of data processing.
Confidentiality: Safeguarding sensitive information from unauthorized disclosure.
Privacy: Handling personal information in accordance with privacy policies and applicable laws.
The Importance of SOC 2 for AI Workflows
Freeplay's customers often work with important data throughout the development lifecycle. As an end-to-end platform for experimentation, testing and monitoring AI systems, Freeplay is entrusted with safeguarding this data.
As AI becomes more prevalent across industries, there is increasing scrutiny on the privacy and security implications of AI systems. Freeplay's SOC 2 compliance helps our customers meet their own regulatory requirements and industry standards when developing AI applications that handle sensitive data.
AI development often involves collaboration among multiple teams and stakeholders, including data scientists, engineers, and domain experts. Our security commitments enable teams to collaborate with confidence that Freeplay is taking data protection seriously.
Pushing Ahead To SOC 2 Type 2 Certification
Achieving SOC 2 Type 1 Certification is a significant milestone, but it’s also just an initial milestone.
Freeplay is already working towards SOC 2 Type 2 Certification, which involves a more extensive audit to validate the effectiveness of our controls. And SOC 2 is not the end — we’ll be adding other certifications in time to address our customers' diverse needs across industries and geographies. We’re dedicated to being a trusted partner to our customers and to maintaining the highest standards of security and privacy.