Paperform has Achieved SOC 2 Compliance

Paperform is excited to share the news that we have recently completed our System and Organization Controls (SOC) 2 Type I Audit Industry-Standard Accreditation.

What does that mean for you? It means that anyone using Paperform’s Products (Paperform form builder or Papersign eSignature tool) can rest assured knowing that our software and services are protected by one of the highest recognized standards of information security compliance in the world.

We’ve always been committed to high standards of compliance, but as we’ve grown into an established company and look to support our new Business and Enterprise offerings, we became determined to offer all of our customers the assurance, certifications, and reports you need to keep your compliance teams and customers happy and assured.

The successful completion of our SOC 2 Report is one of many ways that we have planned to earn and retain your trust. SOC 2 is just one aspect of our growing security program. Paperform already supports GDPR compliance, and we’ll very soon be able to share our penetration testing attestation with you.

SOC 2 was developed by the American Institute of CPAs (AICPA) to allow a third-party auditor to validate a service company’s internal controls with respect to information security.

We obtained our audited SOC 2 Report by partnering with Johanson Group who respectively review our internal controls including policies, procedures, and infrastructure regarding data security, firewall configurations, change management, logical access, backup management, business continuity and disaster recovery, security incident response, and other critical areas of our business.

Thanks to a company-wide effort at Paperform, and with the help of our trusted partner Johanson Group, we successfully achieved SOC 2 Type 1 compliance and received an Auditor’s Report, which we are happy to share with you to prove to you that our policies, procedures, and infrastructure meet or exceed the SOC 2 criteria. In addition, our Type 2 report will be ready in the coming months.

We’re proud to confidently say we go above and beyond the minimum requirements for SOC 2 by integrating our critical infrastructure to monitor compliance to the SOC 2 framework 24/7/354, not just during the audit window.

As we look to 2024 and beyond, and release our new Business and Enterprise offerings, as well as new products such as our eSignature tool Papersign, we plan on having more official compliance certifications under our belt.

Stay tuned, we’re just getting started!

To access our SOC 2 Type 1 Report, please make the request via this form https://security-nda-request.paperform.co/

To ask us more about our new Business or Enterprise offerings for Paperform, check out our pricing here https://paperform.co/pricing/, or reach out to our super-responsive Sales Team here https://talk-to-sales.paperform.co/