SkySlope is now SOC 2 Type 2 compliant, reaching a new level of security excellence.

Compliance and Data Security at SkySlope

In an industry where compliance and data security are paramount, real estate professionals trust SkySlope to keep their data secure and available whenever they need it. As part of our commitment to delivering industry-leading products, we are pleased to announce that SkySlope’s suite of real estate software is now SOC2 Type 2 compliant, certified by an external audit firm in the trust principles of security, availability, and confidentiality

 

What is SOC2?

A SOC 2 report demonstrates a compliance standard developed by the American Institute of CPAs (AICPA), whereby an organization voluntarily engages with an independent, third-party auditing firm to ensure security processes and practices are in place and functional throughout the audit period.

There are two types of SOC2 reports. 

  • Type 1 evaluates whether a service provider’s systems are suitably designed to meet the trust principles for which it is being audited.
  • Type 2 adds a historical evaluation to determine if the controls were met over a period of time. 
 

SkySlope’s commitment to protecting your data

SkySlope has obtained both Type 1 and Type 2 reports for the following three trust service categories of SOC 2:

  • Security: We’ve implemented policies and procedures to prevent unauthorized access to the systems we operate and the data we store, industry leading encryption in transit and at rest, incident response, and rock solid software development processes.
  • Availability: We’re committed to building systems that are functional and accessible with a target of 99.99% uptime. 
  • Confidentiality: Enhanced processes and measures are taken to protect that confidential information of our customers and their clients.
 

A sample of SkySlope’s commitment to secure operations include:

  • Secure employee workstations
    • Employee laptops are encrypted and secured with IT-managed security policies.
  •  Customer data encrypted
    • SkySlope utilizes industry-standard encryption to keep customer data secure in transit and at rest.
  •   Regular backups and multi-region deployments
    • We back up our databases regularly and keep data in multiple geographic regions for redundancy. 
  •  Secure development practices 
    • Changes to SkySlope applications are reviewed and undergo testing in order to provide secure and robust systems. 
  •  Security monitoring, alerting, and testing
    • Members of our engineering and security teams use a combination of internal and third-party tools to monitor access to systems, scan code for vulnerabilities, and report on system performance. We also engage with independent penetration testing companies to test the security measures we have in place.

 

We will continue to design and build our systems with security in mind so that our customers can focus on the compliance that matters most to them. This audit certifies the practices that we have been following for years exceed industry standards so that our customers can focus on their business and not worry about their data.

Written By SkySlope
Recent Posts View All

Innovators, Stellar MLS and SkySlope, collaborate to deliver new time-saving solutions for REALTORS®

Stellar MLS and SkySlope will pioneer the industry’s first fully...

Transparency, equitability, and automation are the future of transaction technology

Our very own Buck Avey, VP of Product, spoke last...

SkySlope Launches Breeze to Make Washington Disclosures Fast and Effortless

Breeze enables Washington agents and sellers to easily prepare and...

SkySlope is now SOC 2 Type 2 compliant, reaching a new level of security excellence.

Compliance and Data Security at SkySlope In an industry where...