BridgeFT Completes System and Organization Controls (SOC) 2 Type II Audit

BridgeFT is delighted to share the news that we have recently completed our System and Organization Controls (SOC) 2 type II Audit.

What is SOC 2 Compliance?

The SOC 2 audit stands as one of the most esteemed benchmarks for information security compliance globally. Developed by the American Institute of Certified Public Accountants (AICPA), a SOC 2 information security standard is a report that validates controls relevant to security, availability, integrity, confidentiality, and privacy.  The SOC 2 Type II certification ensures service providers meet a standard degree of security control in areas including organization and management, communications, risk management and monitoring of controls.  

Our Compliance Journey

We acquired our audited SOC 2 Report through partnering with Johanson Group. They meticulously reviewed our internal controls, encompassing policies, procedures, and infrastructure concerning data security, firewall configurations, change management, logical access, backup management, business continuity, disaster recovery, security incident response, and other pivotal facets of our operations.

Thanks to a company-wide effort across BridgeFT and the invaluable help of our trusted partner, Johanson Group, we have successfully accomplished SOC 2 compliance, receiving an Auditor’s Report. This report serves as validation that our policies, procedures, and infrastructure not only align with but surpass the stringent criteria set by SOC 2. Our partnership with Johanson Group enables us to exceed the basic SOC 2 requirements by integrating our critical infrastructure for continuous monitoring of SOC 2 compliance round the clock, every day of the year, ensuring our commitment to security goes beyond just the audit period.

What SOC 2 Means for Our Clients

We consider trust to be the cornerstone of our customer relationships. The successful completion of our SOC 2 Report is just one of the strategies we’ve implemented to cultivate and uphold that trust.

SOC 2 represents a key component of our expanding security initiative. Our dedication lies in the ongoing enhancement of our information security program, complemented by an annual SOC 2 audit. This validates our unwavering support for our customers’ privacy and security. 

“Achieving SOC 2 compliance is a major milestone for our company and an important indicator of how seriously we take data security,” said BridgeFT Chief Executive Officer Joe Stensland.  “We’re committed to delivering the highest level of data security and privacy, and SOC 2 is a key part of that commitment. We’ll continue to invest in our modern, API-first platform infrastructure to ensure that our clients can trust us with their most sensitive data.”

BridgeFT’s WealthTech API is the industry’s first WealthTech-as-a-Service platform, offering a robust and open API to AI and trade-ready, multi-custodial data, advanced analytics and application services. BridgeFT’s WealthTech API empowers clients to reimagine the potential of their financial data and technology stack by eliminating the need for individual data feeds from a range of custodians and back-office providers, allowing wealth management firms and fintech companies to create differentiated, next-generation applications.