DeepSource is now SOC 2 Type II compliant
Security is at the core of how we operate at DeepSource. Today, we’re glad to announce that DeepSource is now SOC 2 Type II compliant for security, availability, and confidentiality.
Over the last few months, an independent auditor reviewed DeepSource’s infrastructure security controls, information security practices, policies, procedures, and operations, based on the standards set by AICPA (American Institute of Certified Public Accountants) and deemed that DeepSource follows industry standard practices that safeguard our user’s data. Additionally, this audit confirmed that our platform is protected against unauthorized physical and logical access.
If you are an existing DeepSource customer, send us an email or let us know in your dedicated shared Slack channel to obtain a copy of the report. If you are currently piloting or evaluating DeepSource, your point of contact can provide you with the SOC 2 audit report under NDA.
Part of our ongoing dedication to data security, availability, and confidentiality is our commitment to consistently and critically reviewing how we collect, manage, and secure customer data. And as part of that process, we plan to continue to obtain periodic SOC 2 Type II reports, as well as additional compliance certifications, such as the ISO 27001. You can read more about our security posture here.