Our health is one of the most carefully scrutinized aspects of our lives, so it’s essential that access to and protection of health information undergo consistent examination. This is a core value at Clinia, and we take it very seriously. That's why we're proud to have achieved a SOC 2 Type II certification after receiving our SOC 2 Type I in 2022, as part of our ongoing commitment to uphold the highest data security standards.

To achieve this new certification a third party auditor conducts a rigorous assessment of how effectively our security controls are designed and how they perform over an extended period. 

These security controls, whether they be administrative, technical or physical, are crucial for protecting sensitive data, preventing unauthorized access, and mitigating risks. They ensure the integrity, confidentiality, and availability of systems and information.

But what exactly is SOC certification - and why does it matter?

What is SOC Certification?

SOC stands for System and Organization Controls. It’s a set of standards developed by the American Institute of Certified Public Accountants (AICPA) to evaluate and verify the overall effectiveness of an organization's controls over an extended period. Think of it like a third-party vehicle maintenance or a home inspection report — you want to ensure everything is in working order before making a purchase. They took a detailed look around, and now we are a two-time SOC compliant organization.

What’s the difference between SOC 2 Type 1 vs SOC 2 Type 2?

There are two main types of SOC 2 reports:

• Type 1: Going back to the car inspection analogy again. It’s like a one-time inspection. It looks at an organization's controls and policies at a specific point, to essentially see if they are in place and ready to work.

• Type 2:  Now that we’ve owned the car and driven it for a while, you want to ensure everything is running smoothly and as expected. Over an extended period, a third-party auditor continuously inspects the organization’s controls and policies to determine they are still effective.

Once the external auditor completes their assessment to identify any gaps or weaknesses in the controls, we are then benchmarked against SOC 2 industry standards.

Achieving our SOC 2 certifications means that Clinia has demonstrated its continued commitment to the highest data security standards, a badge of honour we are proud to show off to our clients. We display it next to our B Corp certification as a reminder of our continued pledge to be a force for good, helping to create a positive impact on our clients and their communities. 

SOC 2 compliance checks are done annually to ensure continued vigilance in the management of your data. As we continue to grow and evolve we look forward to earning top marks for data security. Because that’s the kind of trust and security we believe in.