Skip to Main Content

SOC2 Attestation

System and Organization Controls (SOC) 2 reports are third-party examination reports that verify an organization’s achievement of compliance controls and objectives. Based on the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA) Trust Services Criteria (TSC), these reports assess an organization’s information systems in terms of security, availability, processing integrity, confidentiality, and privacy.

XCCommerce undergoes rigorous, independent SOC 2 audits conducted by a certified public accountant (CPA) firm. These audits evaluate the design and effectiveness of XCCommerce’s compliance controls over a specified period for the relevant Trust Services Criteria (TSC) that are in scope. SOC 2 reports are conducted in accordance with the SSAE 18 standard, specifically AT-C sections 105 and 205, governed by the AICPA.

Relevant products include XCCommerce’s Retail Promotion Platform Services delivered via the Azure Cloud (SaaS).