ABBYY Vantage Receives SOC2 Type II Certification

Industry-leading Intelligent Document Processing platform joins other ABBYY solutions in achieving the highest infosec standard.

Global enterprises trust ABBYY to provide a holistic approach to their digital transformation. They work with us to achieve faster business results in the areas that matter most to them: customer experience, operational excellence, employee satisfaction, productivity, and revenue generation.

This trust is fundamental to our success. That is the reason we are committed to delivering the highest standards of security and are proud that our market-leading solutions are SOC2 Type II compliant.

What is SOC 2?

The System and Organization Controls (SOC) 2 is one of three reports available under the SOC framework, which is defined by the American Institute of Certified Public Accountants (AICPA). It is designed to ensure that third-party service providers (Service Organization) can securely manage data to protect the interests and privacy of its clients.

SOC 2 compliance verifies the existence and effectiveness of security controls relevant to Trust Service Principles (TSPs) of Confidentiality, Availability, Processing Integrity, Privacy, and Security.

There are two SOC 2 reports: Type 1 and Type 2.

• Type 1 describes the Service Organization’s systems and evaluates whether they can meet the TSPs as of a specified date.
• Type 2 details the operational effectiveness of those systems throughout a disclosed period.

Why is SOC 2 important?

Clients often require vendors, and especially SaaS providers, to certify protection and ensure privacy of client data. When meeting with existing and potential clients, we are often asked about our information security policies and procedures, how we protect and control access to data, and how we track and respond to incidents. While we are confident of our controls, the independent, third-party SOC 2 reports validate our security and provide assurance to our clients.

In recent years, we have matured our information security program with the aim of forming a robust information security and privacy ecosystem. SOC 2 audits have complemented this effort greatly.

Which ABBYY products are SOC2 Type 2 certified?

We are proud to share that we have passed our SOC 2 audits and have been awarded SOC 2 reports for the following products.

These reports demonstrate ABBYY’s commitment to protecting our client’s data.

The auditors concluded the controls were fully designed to provide unquestionable assurance that ABBYY’s service commitments and system requirements would be achieved based on the applicable trust services criteria.

SOC 2 reports, which includes scope, methodology, and findings, please contact us at ABBYY_sales@abbyy.com. For existing customers, please contact your ABBYY Account Manager. 

Additionally, none of our on-premise solutions share any personal or commercial data that are digitized and analyzed by customers. Customers have full control of such data while using our on-premises solutions. ABBYY cloud solutions use trusted service providers, strict access control and strong encryption. Furthermore, ABBYY is compliant with applicable regulations regarding commercial and personal data use, such as GDPR.

Our commitment to information security and privacy is part of our overall global initiative to promote the development of trustworthy artificial intelligence (AI) technology. As AI becomes ubiquitous across enterprise high-value and large-scale uses and more open-source tools become available for digitizing data, the ethical use of accessing and training data is imperative. ABBYY made public its core guiding principles on developing, maintaining, and promoting trustworthy AI technologies, which can be found at ABBYY’s Approach to Trustworthy AI.

Learn more about ABBYY Vantage and intelligent document processing for the Digital Workforce.