← Glossary · security
SOC 2
Service Organization Control 2 — an audit framework for security, availability, processing integrity, confidentiality, and privacy controls.
SOC 2 Type II reports show a vendor's controls operated effectively over a period (usually 6–12 months). Cubbie tracks your vendors' SOC 2 status in Vendor Relationship Platform (S8.2) and surfaces expirations.