compliance-frameworks
Installation
SKILL.md
Compliance Frameworks
SOC 2 Compliance
SOC 2 Overview
SOC 2 (System and Organization Controls 2) is a compliance framework for service organizations that store customer data in the cloud.
SOC 2 Trust Services Criteria
- Security: Protection against unauthorized access
- Availability: System is available for operation and use
- Processing Integrity: System processing is complete, valid, accurate, timely, and authorized
- Confidentiality: Information is disclosed only to authorized parties
- Privacy: Personal information is collected, used, retained, disclosed, and disposed of properly