gptkbp:instanceOf
|
Compliance Standard
|
gptkbp:appliesTo
|
gptkb:Service_Organizations
|
gptkbp:basedOn
|
gptkb:AICPA_Trust_Services_Criteria
|
gptkbp:compatibleWith
|
gptkb:certification
|
gptkbp:developedBy
|
gptkb:American_Institute_of_Certified_Public_Accountants
|
gptkbp:distinctFrom
|
gptkb:SOC_1_Compliance
gptkb:SOC_3_Compliance
|
gptkbp:focusesOn
|
gptkb:Information_Security
Privacy
Confidentiality
Availability
Processing Integrity
|
gptkbp:hasType
|
Type I
Type II
|
gptkbp:heldBy
|
Attestation
|
https://www.w3.org/2000/01/rdf-schema#label
|
SOC 2 Compliance
|
gptkbp:isCommonlyRequiredBy
|
gptkb:Regulators
Enterprise Customers
Business Partners
|
gptkbp:isVoluntary
|
True
|
gptkbp:platform
|
gptkb:Trust_Services_Criteria
|
gptkbp:preparedBy
|
gptkb:CPA_Firm
gptkb:Certified_Public_Accountant
|
gptkbp:recognizedBy
|
gptkb:United_States
Internationally
|
gptkbp:relatedTo
|
gptkb:SOC_1_Compliance
gptkb:SOC_3_Compliance
Cloud Service Providers
Technology Companies
SaaS Companies
|
gptkbp:requires
|
Incident Response
Change Management
Risk Assessment
Physical Security
Data Encryption
Vendor Management
Security Controls
Employee Training
Access Controls
Independent Audit
Logical Security
Monitoring Activities
Policy Documentation
|
gptkbp:type
|
describes controls at a point in time
|
gptkbp:Type_II
|
describes controls over a period of time
|
gptkbp:updated
|
Periodically
|
gptkbp:usedFor
|
gptkb:Due_Diligence
Customer Assurance
Vendor Risk Management
|
gptkbp:bfsParent
|
gptkb:Workato_Integration_Platform
|
gptkbp:bfsLayer
|
6
|