The audit, conducted by Linford & Co, LLP, evaluated the design and operational effectiveness of Ledidi’s internal controls over a 12-month period — from May 1, 2025, to April 30, 2026 — with a focus on the Trust Services Criteria for security.
What is SOC 2 and Why Does It Matter?
SOC 2, developed by the AICPA, is a leading compliance framework designed for technology and cloud computing organizations that handle customer data. It focuses on five key areas: security, availability, processing integrity, confidentiality, privacy.
What This Means for Our Users
Type II SOC 2 compliance means that Ledidi's controls have not only been designed effectively but have also been proven to operate effectively over time. This covers everything from user access and encryption practices to change management, incident response, and third-party risk monitoring.
In particular, the audit highlights include but are not limited to:
1. Role-based access control and encryption of data at rest and in transit
2. Regular risk assessments and compliance monitoring
3. Secure cloud infrastructure hosted on AWS
4. Annual penetration testing and continuous security trainin
To request a copy of the full report, please contact us.