<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=229461991482875&amp;ev=PageView&amp;noscript=1">

At Gatekeeper, we continually invest in security best practices to ensure that our client’s data stays safe and secure. As a part of an ongoing effort, we are excited to announce that we’ve successfully passed our SOC 2 assessment. 

The examination was conducted by A-LIGN, a technology-enabled security and compliance firm trusted by more than 2,500 global organisations to help mitigate cybersecurity risks.

“Gatekeeper’s SOC 2 report validates its commitment to data security and protection, as well as compliance with critical standards to mitigate cybersecurity threats.” 


Keeping our customers protected 

Gatekeeper’s control framework was independently audited to assess our compliance with the SOC 1 Type 1 & 2 and SOC 2 Type 2 framework. We chose to assess our internal controls across the whole business including leadership strategy and corporate governance, but the key focus was on the Gatekeeper platform and its:

  • Security
  • Privacy
  • Confidentiality
  • Privacy
  • System Access Control 

SOC 2 governs how Gatekeeper manages customer data and has a great deal of cross-over with the ISO27001 accreditations we have held for 5+ years. Whilst ISO has global appeal, SOC 2 will provide additional comfort to our US-based customers that their data is protected. 

What Is SOC 2?

Rather than a cybersecurity assessment that evaluates specific technical configurations, a SOC 2 report focuses more on how an organisation implements and manages controls to mitigate the identified risks to the different parts of an organisation.

The SOC 2 audit testing framework is based on the Trust Services Criteria (TSC), which are used to identify various risks an organisation should consider addressing. There are five Trust Services Criteria.

The first criteria, Security, must be included with every SOC 2 report and is referred as the “Common Criteria”. The remaining four are optional to include:

  • Security (required)
  • Availability (optional)
  • Processing Integrity (optional)
  • Confidentiality (optional)
  • Privacy (optional)

Reports available upon request 

Gatekeeper will make the SOC 2 report available to current or potential customers upon execution of a non-disclosure agreement.  We hope the steps we have taken help you remain confident in knowing that your data is secure with Gatekeeper. 

Gatekeeper values the trust of its customers and that’s why we’re committed to providing the highest levels of security, availability and confidentiality,” 

says Patrick O’Connor, CEO of Gatekeeper. 'Passing both SOC 1 Type 2 and SOC 2 Type 1 assessments, in addition to our existing ISO 9001 and ISO 27001 certificates, demonstrates our ongoing dedication to protecting customers and their data.'


To learn more about our security policies and initiatives, please contact a member of the team.

Shannon Greaney
Shannon Greaney

Shannon is an experienced marketer, delivering content on a variety of topics and trends within contract and vendor management.

Tags

Contract Management , Control , Compliance , Vendor Management , Contract Lifecycle Management , Contract Management Software , Visibility , Contract Lifecycle , Supplier Management , Case Study , Contract Risk Management , Vendor Management Software , Contract Management Strategy , Contract Repository , Risk Mitigation , Contract Automation , Workflows , CLM , Contract Ownership , Contract Visibility , Contracts , Supplier Performance , Supplier Risk , Contract and vendor management , Legal , Legal Ops , Podcast , Risk , Third Party Risk Management , Vendor Onboarding , contract renewals , Gatekeeper Guides , RFP , Supplier Relationships , TPRM , Business continuity , CLM solutions , COVID-19 , Contract Managers , Contract Performance , Contract Redlining , Contract Review , Contract Risk , ESG , Metadata , Negotiation , Procurement Reimagined , Procurement Strategy , SaaS , Supplier Management Software , Vendor Portal , Vendor risk , webinar , Artificial Intelligence , Clause Library , Contract Administration , Contract Approvals , Contract Management Plans , Contract compliance , ESG Compliance , Kanban , RBAC , Recession Planning , Regulation , Regulatory compliance , SOC Reports , Security , Sustainable Procurement , collaboration , AI , Audit preparedness , Audit readiness , Audits , Business Case , Clause Template , Contract Breach , Contract Governance , Contract Management Audit , Contract Management Automation , Contract Monitoring , Contract Obligations , Contract Outcomes , Contract Templates , Contract Tracking , Contract Value , Dashboards , Data Fragmentation , Due Diligence , Employee Portal , Excel , FCA , Future of Procurement , ISO Certification , KPIs , Legal automation , LegalTech , Market IQ , NetSuite , Obligations Management , Procurement , Procurement Planning , Redline , Scaling Business , Spend Analysis , Standard Contractual Clauses , Suppler Management Software , Touchless Contracts , Vendor risk management , central repository , success hours , time-to-contract , Australia , BCP , Breach of Contract , Brexit , Business Growth , CCPA , CMS , CPRA 2020 , CSR , Categorisation , Centralisation , Certifications , Cloud , Conferences , Confidentiality , Contract Ambiguity , Contract Analysis , Contract Approval , Contract Attributes , Contract Challenges , Contract Change Management , Contract Community , Contract Disengagement , Contract Disputes , Contract Drafting , Contract Economics , Contract Execution , Contract Management Features , Contract Management Optimisation , Contract Management pain points , Contract Negotiation , Contract Obscurity , Contract Reminder Software , Contract Reporting , Contract Routing , Contract Stratification , Contract Termination , Contract Volatility , Contract relevance , Contract relevance review , Contracting Standards , Contracting Standards Review , Cyber health , Data Privacy , Data Sovereignty , Definitions , Digital Transformation , Disputes , EU , Electronic Signatures , Enterprise , Enterprise Contract Management , Financial Services , Financial Stability , Force Majeure , GDPR , Gatekeeper , ISO , IT , Implementation , Integrations , Intergrations , Key Contracts , Measurement , Mergers and Acquisitions , Microsoft Word , Modern Slavery , NDA , Operations , Parallel Approvals , Partnerships , Pharma , Planning , Port Agency , Pricing , RAG Status , Redlining , Redlining solutions , Requirements , SaaStock , Shipping , Spend optimzation , Startups , SuiteApp , SuiteWorld , Supplier Cataloguing , Technology , Usability , Vendor Governance , Vendor Relationship Management , Voice of the CEO , automation , concentration risk , contract reminders , document automation , eSign , esignature , post-signature , remote working , vendor centric

Related Content

 

subscribe to our newsletter

 

Sign up today to receive the latest GateKeeper content in your inbox.

Subscribe to Email Updates