Big news on the security front: involve.me is officially SOC 2 Type II compliant.
This is a major step forward in our ongoing effort to keep your data safe and private.
SOC 2 (System and Organization Controls 2) is a widely recognized auditing standard developed by the AICPA (American Institute of Certified Public Accountants). It evaluates how companies manage customer data based on several criteria.
In simple terms, it's a rigorous test of how well we protect your data.
This achievement reflects our dedication to maintaining the highest standards for securing customer data.
What SOC 2 Type II Means
Quick refresher on the difference between the two report types. A SOC 2 Type I report checks that your security controls are designed correctly on a single day, like a snapshot. Type II is the harder one: it watches those same controls run across several months and confirms they actually held up.
We now went through the full Type II audit. An independent, accredited firm reviewed our systems, policies, and procedures, then gathered evidence that our controls ran consistently across the audit window.
The result is independent, documented proof that the safeguards around your data work in daily practice, month after month.
Why This Matters for You
If you're in a regulated industry, or running enterprise-level operations, you need to know your vendors take data protection seriously.
This milestone gives you that peace of mind.
And we're not just SOC 2 compliant. We're also fully compliant with GDPR, the European Union's strict data privacy law. This means we meet high standards for data protection on both sides of the Atlantic.
By completing the SOC 2 Type II audit and maintaining GDPR compliance, we're providing documented assurance that involve.me has the necessary systems and controls to handle personal information, offer transparency, and respect your rights as a user.
This milestone will help our customers and partners confidently evaluate our platform for their most important use cases.
Whether you're using involve.me to:
collect sensitive customer data
run secure lead-gen campaigns
or handle customer interactions at scale
...you can trust that we've built the platform with security at its core.
Accessing Our SOC 2 Report
To ensure confidentiality, the full SOC 2 Type II report is only available under NDA and is shared exclusively with Enterprise Plan customers or prospects who have signed a letter of engagement.
If you're interested in reviewing the report, you can request access directly from our Trust Center or get in touch with our team to start the process.
What’s Next
SOC 2 isn't a checkbox. It's a long-term commitment.
We're proud of this milestone, and we're already focused on what comes after it: renewing our Type II attestation year over year, continued investment in our infrastructure, and the daily work of protecting your data.
Security is never finished. We'll keep testing and improving our controls, and we'll keep you posted as we do.