Soracom, a Japanese provider of IoT connectivity, has received SOC 2 type-one assurance that its IoT platform complies with cyber-security requirements.

The SOC 2 assurance report is an evaluation of an organisation’s cyber-security controls. The assessment process, performed by external auditors, tests the design of security, availability, processing integrity, confidentiality or privacy processes of a connection at a specific point in time.

The platform was assessed for security and confidentiality under the Trust Service Criteria set by the American Institute of Certified Public Accountants (AICPA).

This report asserts that Soracom’s business processes and the internal control environment of the Soracom IoT platform are appropriately designed based on the applicable Trust Service Criteria. In this case, the evaluation assessed the security and confidentiality of both cloud services and outsourced providers.

Soracom says it will continue to strengthen its internal controls and security measures. The company is also working towards receiving SOC 2 type-two assurance compliance, which evaluates the effectiveness of the platform’s controls over time by observing a full year of operations.

“Achieving SOC 2 type-one assurance compliance represents a significant milestone for Soracom,” said Kenta Yasukawa, CTO of Soracom. “Customers around the world trust Soracom with their data. That’s why we have made security a priority from day one. We are committed to maintaining the highest possible standards of security and trust, from the device to the cloud and in our own internal systems and processes.”

Soracom (www.soracom.io) is a technology partner to more than 20,000 startups, SMBs and enterprise organisations, connecting more than six million IoT devices globally.