Corporate
November 10, 2022

Sumsub receives SOC 2 Type II attestation

Share

Sumsub, an all-in-one verification platform, attained its SOC 2 Type II report after auditing by BARR Advisory. This was made possible by partnering with Vanta, a leader in continuous compliance monitoring.

London, November 10, 2022 — Sumsub, a global tech company offering customizable KYC, KYB, KYT, and AML solutions, today announced the successful completion of the System and Organisation Controls (SOC) 2 Type II audit.

The audit was supervised by BARR Advisory, P.A. and resulted in a SOC 2 Type II report. It states that Sumsub satisfies trust services criteria and operates effectively over an agreed-upon observation period. This attestation demonstrates Sumsub’s ongoing commitment to the highest standard of data protection and security. Earlier this year, Sumsub was successfully audited, again by BARR Advisory, resulting in a SOC 2 Type I report.

Obtaining SOC 2 report becomes the industry standard when it comes to security compliance. It’s designed to give clients assurance that the measures a service provider takes to process client information are effective.

“With the SOC 2 Type II attestation, Sumsub’s partners and customers have even more confidence that they’re getting best-in-class security. Sumsub is 100% committed to safeguarding its clients’ data, especially given the critical role of information security in every aspect of our offerings. This achievement challenges us to continue our efforts towards strategic data security initiatives, and we will continue to proactively investigate and pursue new ways to upkeep our high security standards,

comments Andrew Sever, Co-founder and CEO of Sumsub.

To complete this attestation, Sumsub partnered with Vanta, a leading automated security and compliance platform. Vanta helped automate the collection of audit evidence and provided Sumsub with a foundation to ensure compliance with international information security and privacy standards and implementation of controls to protect its customer data.

“Partnering with Vanta on SOC 2 Type II helped us to manage compliance with multiple information security standards for ensuring data security and privacy, which will only become more important as we scale. The Vanta team saved us valuable time and resources, automating the challenging compliance process. Completing a SOC 2 Type II audit and achieving the report, issued by independent auditors, is a critical step toward demonstrating the security of Sumsub’s all-in-one verification platform for customers and investors”,

adds Andrew Sever, Co-founder and CEO of Sumsub.

Sumsub is now going to be audited by BARR Advisory, P.A. on a yearly basis to ensure that its security systems and controls remain effective.

About Sumsub

Sumsub is an all-in-one verification platform that secures every step of your customer’s journey. With Sumsub’s customizable KYC, KYB, KYT, and AML solutions, you can orchestrate your verification process, welcome more customers worldwide, speed up onboarding, reduce costs and steer clear of digital fraud.

Sumsub has over 2,000 clients across the fintech, crypto, transportation, trading and gaming industries including Binance, Mercuryo, Bybit, Huobi, Unlimint, DiDi, Poppy and TransferGo.

About Vanta

Vanta restores trust in SaaS businesses by giving startups an easy-to-use set of tools to improve and prove their security. Over 1,000 fast-growing companies rely on Vanta to automate their security monitoring and prepare for SOC 2, ISO 27001, HIPAA, PCI DSS and GDPR compliance certifications in weeks instead of months. Vanta was founded in 2017 and headquartered in San Francisco. For more information, visit https://www.vanta.com.

About BARR Advisory

BARR Advisory is a cloud-based security and compliance solutions provider, specializing in cybersecurity consulting and compliance for companies with high-value information in cloud environments like AWS, Microsoft Azure, and Google Cloud Platform. A trusted advisor to some of the fastest growing cloud-based organizations around the globe, BARR simplifies compliance across multiple regulatory and customer requirements in highly regulated industries including technology, financial services, healthcare, and government.

BARR Advisory services include:

● Compliance Program Assistance

● SOC 1 Examinations

● SOC 2 and 3 Examinations

● SOC for Cybersecurity

● PCI DSS Assessment Services

● ISO 27001 Assessments

● FedRAMP Security Assessments

● HIPAA and HITECH Services

● Penetration Testing and Vulnerability Assessments

● Virtual CISO Services

Share