Certifications
SOC 2 Type 2 Compliance
Suvoda undergoes an annual SOC 2 Type 2 audit each year. At the conclusion of the audit, the auditor issues an independent auditor report (“opinion”) on Suvoda’s description of the system, controls design and controls operating effectiveness throughout the period subject to audit. This report includes information about controls that Suvoda has designed, implemented, and operated to provide reasonable assurances that its service commitments and system requirements would be achieved based on the Trust Services criteria relevant to security, privacy, and confidentiality set forth in TSP section 100, 2017 Trust Services Criteria for Security, Availability, Process Integrity, Confidentiality and Privacy (AICPA, Trust Services Criteria). Clients who have a signed confidentiality agreement with us can request a copy of this report.
Data Privacy Framework
Suvoda self-certifies to the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework program as set forth by the U.S. Department of Commerce, for non-HR data. The Data Privacy Framework enables participating companies to demonstrate their adherence to certain data privacy principles and practices.