Our policies and controls are SOC 2-aligned today — we follow the Trust Services Criteria for security, availability and confidentiality. Formal certification is on our 2026 roadmap.
What's in place now
- SSO with enforced MFA (Google Workspace)
- Role-based access control across the workspace
- Encryption at rest and in transit
- Audit logging on all access to sensitive data
- Documented incident response process
- Regular access reviews
On the roadmap
- Formal SOC 2 Type I audit (target: late 2026)
- Type II audit (target: 2027)
For enterprise buyers
We can share our security one-pager on request — it covers architecture, encryption standards, data-handling policies and vendor list. Email hello@southassistants.com if your procurement team needs it.