The audit, conducted by Linford & Co, LLP, evaluated the design and operational effectiveness of Ledidi’s internal controls over a 12-month period — from May 1, 2024, to April 30, 2025 — with a focus on the Trust Services Criteria for security.
What is SOC 2 and Why Does It Matter?
SOC 2, developed by the AICPA, is a leading compliance framework designed for technology and cloud computing organizations that handle customer data. It focuses on five key areas: security, availability, processing integrity, confidentiality, privacy.
What This Means for Our Users
Type II SOC 2 compliance means that Ledidi's controls have not only been designed effectively but have also been proven to operate effectively over time. This covers everything from user access and encryption practices to change management, incident response, and third-party risk monitoring.
In particular, the audit highlights include but are not limited to:
1. Role-based access control and encryption of data at rest and in transit
2. Regular risk assessments and compliance monitoring
3. Secure cloud infrastructure hosted on AWS
4. Annual penetration testing and continuous security trainin
View the Full Report
We’ve made our Type II SOC 2 report available to current and prospective customers. We believe in transparency, and sharing this report is part of our commitment. To read the full report please click here.