Read or buy our book, Build: Elements of an Effective Software Organization →
Start free trialGet a demo
Log in
Swarmia is now SOC 2 Type 2 compliant
Oskari Virtaoja, Software Engineer · Dec 16, 2022

Ever since Swarmia was founded in November 2019, protecting our customers’ data has been a priority for us.

After all, there’s no way we would be able to work with modern engineering organizations like Miro, Webflow, and Docker if we couldn’t prove that we have all the necessary controls in place to protect their interests and data.

That’s why we’re excited to let you know that as of December 15, 2022 Swarmia is SOC 2 Type 2 compliant.

What is SOC 2 Type 2?

System and organization control (SOC) 2 is an audit designed to ensure that service providers, including SaaS companies like Swarmia, have the internal controls in place to securely manage data and protect the interests and privacy of their customers. To obtain SOC 2 certification, an organization must meet certain requirements and undergo an independent audit by a third-party auditor.

SOC 2 was developed by the American Institute of Certified Public Accountants (AICPA). It sets criteria for managing customer data according to the five trust service principles: availability, confidentiality, processing integrity, privacy, and security.

While the SOC 2 Type 1 certification we obtained in November 2021 assessed our security practices at a specific point in time, SOC 2 Type 2 assesses how effective those controls are over time by observing operations for several months.

What does this mean for our new and existing customers?

The successfully completed SOC 2 Type 2 audit demonstrates our ability to protect our customers' information and provide secure and reliable service.

Going forward, we’ll continue to follow SOC 2 best practices, including conducting regular internal and external audits, implementing strong security policies and procedures, and regularly monitoring and testing controls.

In addition to completing the SOC 2 Type 2 audit once a year, we undergo internal security audits twice a year, hold regular trainings to all Swarmia employees, and conduct a third-party security audit at least once a year.

Learn more about security at Swarmia

If you’re a Swarmia customer interested in getting access to the SOC 2 Type 2 report, simply reach out to your Customer Success Manager. If you’re evaluating whether Swarmia might be the right solution for you, you can email us to request your copy of the report.

For more details about our commitment to security and privacy, visit our security page.

Oskari Virtaoja
Oskari Virtaoja is a Software Engineer at Swarmia. In the past, he worked as a Dev Team Lead and Software Engineer at Smartly.io.

Subscribe to our newsletter
Get the latest product updates and #goodreads delivered to your inbox once a month.

More content from Swarmia
Miikka Holkeri · Feb 20, 2024

Minimizing noise and bias in developer surveys

“The world is full of well-meaning people who believe that anyone who can write plain English and has a modicum of common sense can produce a good questionnaire.” — A. N. Oppenheim…
Read more
Ari-Pekka Koponen · Oct 27, 2021

Reduce bias in retrospectives with better data

Many software organizations run retrospectives based on mostly subjective data collected from the retrospective participants. Studies show this leads to skewed insights that often miss broader…
Read more