Is RB2B SOC 2 compliant?
Is RB2B SOC 2 compliant?
RB2B and its parent company Retention.com are SOC 2 Type 1 compliant. We are in the middle of our SOC 2 Type 2 assessment period and expect to have that completed before the end of 2024.
Our business is SOC 2 Type II compliant, can we use RB2B?
Our business is SOC 2 Type II compliant, can we use RB2B?
We advocate for a proactive approach in assessing the compatibility of non-compliant software with your compliance requirements. Engaging with your internal security or IT team for a thorough evaluation is crucial. This ensures that your organization's use of any software, including ours, aligns with your SOC 2 Type II compliance framework and internal policies.
A common query among businesses striving for or maintaining SOC 2 Type II compliance is whether it's permissible to incorporate software that hasn't achieved SOC 2 compliance into their operations. The short answer is yes, but with important caveats to ensure continued compliance.
SOC 2 Type II compliance is centered around stringent standards for managing customer data, covering aspects such as security, availability, processing integrity, confidentiality, and privacy. For a SOC 2 Type II compliant organization, employing non-compliant software necessitates a robust management approach to ensure these compliance standards are not compromised.
Our platform, while not SOC 2 compliant currently, is designed with privacy and security in mind. We specialize in identifying anonymous users and sharing their profiles without ingesting or processing your data. This functionality is structured to minimize the impact on your compliance status. However, the critical factor in determining the suitability of using such software lies within your organization's internal policies and controls.
Do you have a trust portal that we can review?
Do you have a trust portal that we can review?
Yes, RB2B has a trust / assurance portal that your team can review located at https://retention.securitypal.com/