SOC 2

SOC 2

SOC 2

Enterprise-grade security validation and compliance.

Enterprise-grade security validation and compliance.

Enterprise-grade security validation and compliance.

What is SOC 2?

SOC 2 (System and Organization Controls 2) is a rigorous auditing standard developed by the American Institute of CPAs (AICPA) specifically for technology service providers storing customer data in the cloud. The framework evaluates an organization's information systems and controls across five trust service criteria:

  • Security

  • Availability

  • Processing integrity

  • Confidentiality

  • Privacy

There are two types of SOC 2 reports:

Type 1: Evaluates the design of security controls at a specific point in time
Type 2: Assesses both the design and operating effectiveness of controls over an extended observation period (typically 6 months)

Our SOC 2 Type II Compliance

We have achieved SOC 2 Type 2 compliance, demonstrating our ongoing commitment to maintaining the highest standards of security and operational excellence. Our systems and processes have undergone comprehensive independent examination, verifying that our controls are properly designed and operating effectively over time.

Why SOC 2 matters for your organization

While SOC 2 compliance isn't legally mandated, it represents a foundational investment in the security and reliability of the hoop.dev platform. For our customers, our compliance:

  • Validates our implementation of robust security practices

  • Provides third-party verification of our data protection measures

  • Helps simplify your own compliance requirements when using our services

  • Demonstrates our commitment to protecting your sensitive information

  • Supports your risk management and vendor assessment processes

How our compliance supports your security requirements?

Our SOC 2 Type II compliance aligns with the security and compliance needs of enterprise organizations. By choosing hoop.dev, you're partnering with a service provider that:

  • Maintains rigorous security practices validated by independent auditors

  • Implements comprehensive controls for protecting sensitive data

  • Follows documented procedures for managing system operations

  • Monitors systems continuously for security and availability

  • Demonstrates accountability through regular third-party assessments

This commitment to security and compliance helps streamline your vendor risk assessment process and supports your organization's overall security posture.

Accessing our SOC 2 report

You can request access to our full SOC 2 Type II report by visiting trust.hoop.dev. After a brief verification process, we'll provide you with the comprehensive audit report.

2 min read

2 min read

2 min read

Frequently asked questions

Got questions?

Our team is here to make things easier to your environment.

Contact us

Contact us

Contact us

Contact us

How long to get a pilot with a few connections?

In 15 minutes you can get 3-5 connections and an initial set of internal users ready to pilot the solution.

How hard is it to self-host?

We provide automations to deploy and manage the solution and it is a lightweight application that runs anywhere, from Kubernetes to on-premises servers. It takes 20 minutes to get the whole self-hosted infrastructure up & running.

How long are pilots?

We see success 3-5 weeks pilots for teams between 300 and 1000 developers. But we are flexible and can provide more time if you need.

Is hoop.dev SOC2 compliant?

Yes, we are SOC2 Type 2 compliant, demonstrating our commitment to maintaining robust security practices and protecting customer data.

How long to get a pilot with a few connections?

In 15 minutes you can get 3-5 connections and an initial set of internal users ready to pilot the solution.

How hard is it to self-host?

We provide automations to deploy and manage the solution and it is a lightweight application that runs anywhere, from Kubernetes to on-premises servers. It takes 20 minutes to get the whole self-hosted infrastructure up & running.

How long are pilots?

We see success 3-5 weeks pilots for teams between 300 and 1000 developers. But we are flexible and can provide more time if you need.

Is hoop.dev SOC2 compliant?

Yes, we are SOC2 Type 2 compliant, demonstrating our commitment to maintaining robust security practices and protecting customer data.

How long to get a pilot with a few connections?

In 15 minutes you can get 3-5 connections and an initial set of internal users ready to pilot the solution.

How hard is it to self-host?

We provide automations to deploy and manage the solution and it is a lightweight application that runs anywhere, from Kubernetes to on-premises servers. It takes 20 minutes to get the whole self-hosted infrastructure up & running.

How long are pilots?

We see success 3-5 weeks pilots for teams between 300 and 1000 developers. But we are flexible and can provide more time if you need.

Is hoop.dev SOC2 compliant?

Yes, we are SOC2 Type 2 compliant, demonstrating our commitment to maintaining robust security practices and protecting customer data.

Got questions?

Our team is here to make things easier to your environment.

Contact us

Contact us

Contact us

Contact us