Catylex Achieves SOC 2 Compliance, the Gold Standard of Data Protection

Catylex is proud to announce that we’ve received our SOC 2 Type II attestation report.

This is an important milestone but is in no way an end to our commitment to our customers and the security of their data. Catylex views security as the foundation upon which our products are built and upon which trust with our customers is earned and maintained.  

Protecting our customers’ data is a top priority at Catylex. We understand the risks inherent in the data with which we are entrusted. That’s why we’ve implemented the necessary policies and controls to achieve SOC 2 compliance, the gold standard of data protection. This rigorous, independent assessment of our internal security controls validates our dedication and adherence to the highest standards of security and confidentiality.  

To that end, Catylex uses Drata’s automated platform to continuously monitor its internal security controls. This gives Catylex real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems. 

"As a contract analytics company, and having worked for decades at banks and hedge funds, it's hard to think of anything more important to Catylex than data security. Our customers trust us with confidential contract data, and we take that trust extremely seriously" said David Rosen, Catylex Co-Founder. 

Conducted by A-LIGN, a nationally recognized CPA firm registered with the Public Company Accounting Oversight Board, this attestation report affirms that Catylex’s information security practices, policies, procedures, and operations meet the rigorous SOC 2 Trust Service Criteria for security and confidentiality. 

Developed by the AICPA, SOC 2 is an extensive auditing procedure that ensures that a company is handling customer data securely and in a manner that protects the organization as well as the privacy of its customers. SOC 2 is designed for service providers storing customer data in the cloud. 

As more enterprises look to process sensitive and confidential business data with cloud-based services like Catylex, it’s critical that they do so in a way that ensures their data will remain safe. Our customers carry this responsibility on their shoulders every single day, and it’s important that the vendors they select to process their data in the cloud approach that responsibility in the same way.  

We welcome all customers and prospects who are interested in discussing our commitment to security and reviewing our SOC compliance reports to contact us.