Humanic Achieves SOC 2 Compliance

We know how important the security of product and customer data is to our customers, which is why we are excited to announce that Humanic has achieved SOC 2 Type II compliance. This milestone is a testament to Humanic’s ongoing commitment to our customers that they can confidently trust their data with Humanic.

Our priority at Humanic is to protect the privacy and security of your and your customer's data, and we address this responsibility through security and privacy by design methodology. A key part of that is pursuing SOC2 and that’s why we’re excited to announce today that Humanic has achieved SOC2 Type II compliance.

Why Humanic Invested in SOC2

A SOC 2 report is for service organizations that hold, store, or process the information of their users. Humanic provides sales teams with access to data that tells the story of how a customer uses the product combined with the relevant account and contact level information. Because of this, Humanic is at the center of product and revenue – so it is absolutely critical that our customers never have to worry about their data being compromised.

We wanted to make partnering with Humanic as simple a decision as possible and provide transparency for our customers and champions so they can understand and share how we’re building Humanic from the ground up with security in mind.

SOC2 Type II provides our customers with:

A comprehensive, third-party report that goes into detail about our security practices
Confidence that the data you send to Humanic is safe
Security and privacy that you can build your business on, place big bets, and ask hard questions without limitations

What's in the report

Our SOC 2 Type II report includes an in-depth analysis of Humanic’s security and privacy practices performed by an independent auditor. We won’t cover all the details here, but there are a few themes that stood out.

Humanic operate on a 'need-to-know basis'Humanic’s security principles are designed to permit system users to access the information they need based on their role – and restrict them from accessing information that is not necessary.

Your data is encrypted, without exceptionHumanic uses encryption technologies to protect customer data both at rest and in transit.

We hire and train the bestEvery Humanic employee is background tested and the team undergoes ongoing security training to keep everyone up to date.

Security at Humanic

Above and beyond SOC2 Type II, we take a number of measures to ensure that your data is as secure as possible. This includes, but is not limited to the following:

Continuous monitoring built on Vanta
Data encrypted at rest (AES256) and in transport (HTTPS/TLS)
Zero-knowledge Humanic API keys
Restricted employee access to production environments and data
Support for SSO/SAML authentication
Vulnerability Scanning on dependencies and container images
Third-Party Penetration Test and Security Review
GDPR/CCPA Compliance

If you're a Humanic customer and want to see a full copy of our SOC 2 Type II report, reach out to our customer success team at success@humanic.ai