JobsiteOn

SOC 2 Compliance

What SOC 2 means, how JobsiteOn maintains SOC 2 Type II certification, and how to request a copy of the audit report.

Maya Thompson
Written by Maya ThompsonUpdated 2 days ago2 min readBeginner

What this guide covers

This guide explains what SOC 2 compliance means, how JobsiteOn maintains its SOC 2 Type II certification, and how to request a copy of the audit report for your records or procurement process.

What is SOC 2?

SOC 2 (System and Organization Controls 2) is an auditing framework developed by the American Institute of CPAs (AICPA). It evaluates how a service organization manages data based on five trust service criteria:

  1. Security -- protection against unauthorized access.
  2. Availability -- system is available for operation and use.
  3. Processing Integrity -- system processing is complete and valid.
  4. Confidentiality -- information is protected as committed.
  5. Privacy -- personal information is handled appropriately.

Screenshot: A graphic showing the five SOC 2 trust service criteria as icons with labels.

Type I vs. Type II

  • Type I -- evaluates the design of controls at a point in time.
  • Type II -- evaluates the design and operating effectiveness of controls over a period (usually 12 months).

JobsiteOn holds a SOC 2 Type II certification, which provides greater assurance because it covers an extended observation period.

What the audit covers

The SOC 2 audit evaluates JobsiteOn's:

  • Access control policies and enforcement.
  • Data encryption in transit and at rest.
  • Incident response procedures.
  • Change management processes.
  • Vendor management practices.
  • Employee security training.
  • Physical and network security.

Animation: A checklist animation showing each audit area being checked off one by one with green checkmarks.

Requesting the report

  1. Visit trust.jobsiteon.com.
  2. Click Request SOC 2 Report.
  3. Enter your company name and email.
  4. The report is shared under NDA within 2 business days.

Alternatively, email trust@jobsiteon.com with your request.

Tip: If your procurement or legal team needs the SOC 2 report, share the Trust Center link so they can request it directly.

Note: SOC 2 reports are shared under NDA. Do not redistribute the report without permission.

Did this answer your question?

Related Articles