MongoDB System and Organization Controls (SOC) Reports are the result of independent third-party audits that examine how MongoDB achieves key compliance controls and objectives. The MongoDB SOC 2 Security Type II report will help you and your auditors understand the MongoDB controls established to support data security, availability, confidentiality, privacy, and more.
SOC 2 is an auditing procedure designed to ensure that service providers securely manage data to protect the interests of your organization and the privacy of its clients. Developed by the American Institute of CPAs (AICPA), SOC 2 defines criteria for managing customer data based on five “Trust Service Principles” —
A SOC 2 report comes in two formats:
This page is for informational purposes only, and MongoDB does not intend the information or recommendations presented here to constitute legal advice. Each customer is responsible for independently evaluating its own particular use of MongoDB's services as appropriate to support its legal and compliance obligations.