Security is paramount at Carbon, where we are responsible for data management on behalf of our customers and their users. Our commitment to security extends beyond our product to every facet of our company. That's why we're excited to share that Carbon is now SOC 2 Type II compliant, ensuring robust security, availability, and confidentiality for our customers.

Understanding SOC 2 Compliance

SOC 2, short for Service Organization Control 2, represents a comprehensive security framework and compliance standard developed by the American Institute of CPAs (AICPA). This framework ensures that service providers manage user data securely. The certification, meticulously reviewed and conferred by an external advisor, serves as a testament to Carbon's utilization of best-in-class security practices in safeguarding customer data.

In recent months, Carbon has diligently worked to ensure all areas of our organization adhere to the stringent SOC 2 compliance requirements. This includes:

1. Continuous security control monitoring

2. Network and application layer penetration tests

3. Automated data security and vulnerability checks

4. Data encryption for both in transit and at rest

For those eager to delve deeper into SOC 2 Type 2 compliance, we invite you to explore more about it here.

What's Next?

Achieving SOC 2 compliance marks a significant milestone underscoring our dedication to security, compliance, and privacy. Our trajectory involves an unwavering commitment to building data connectors for LLMs that adhere rigorously to industry best practices concerning data security and governance.

Stay Updated

This achievement is just the beginning. To follow our latest updates, follow us on LinkedIn, ensuring you don't miss any developments in our journey toward enhanced security and innovation.