Product Updates

We’re SOC 2 Type II Compliant!

2 min read Michael Carroll on Dec 19, 2017

We’re excited to announce that PubNub, the leading Data Stream Network (DSN) and Real-time Messaging Service, completed the SOC 2 Type II audit!

So, why are we sharing this with you?

As companies increasingly use outside vendors to perform activities that are core to their business operations and strategy, there is a need for more trust and transparency into cloud software providers’ operations, processes and results.

The Service Organization Control (SOC) 2 verifies that PubNub passed a rigorous audit of its internal controls, meeting the security, availability, confidentiality, and privacy standards set by American Institute of CPAs (AICPA). And beyond Type I compliance, Type II compliance means PubNub passed an audit of our procedures/ controls over a period of 6 months.

What does this mean for your business?

Along with the added rigor that SOC 2 requires, our SOC 2 Type II certification means that you can communicate to your customers that your real-time app is built on a SOC 2 compliant infrastructure.

In addition to SOC 2 compliance, PubNub has proven processes and operations that reinforce the security of our service delivery environment:

  • Data Encryption – in transit and at rest
  • HIPAA-Compliance
  • Configurable Data Routing for PII Data
  • EU-only and US-only Data Persistence Options
  • US-EU Privacy Shield Framework Certified
  • Compliance with the EU Standard Contractual Clauses (also known as ‘Model Clauses’)

Learn more about our Enterprise-Grade Security.

Our Customers Are Excited!

“As a leading software solution for ophthalmologists, data security and HIPAA compliance are extremely important for Zeiss Veracity Surgical, and we evaluate all our technology partners through this lens too. When we evaluated PubNub as a real-time messaging service, we were very impressed how easy they were to use. We were sold on PubNub as a partner once we learned about their strengths in data security, SOC 2, and HIPAA-compliance.”

– Danny Kirchmeier, Director of Technology, Carl Zeiss Meditec Digital Innovations