Of the millions of acres mapped by more than 5,000 customers across 200 countries, DroneDeploy manages a ton of data. This also means that securing that data is of the utmost importance. To ensure we’re building trust amongst our customers, we considered it paramount to achieve the highest standards when it came to security. In February 2019, DroneDeploy achieved ISO 27001 certification, an internationally accepted security standard demonstrating compliance with security and privacy best practices. And last July, we achieved SOC 2 Type 1 certification. We’d be happy to provide a copy of the SOC 2 Type 1 Report to any customer, prospect, or inquirer. The SOC 2 report includes management’s description of DroneDeploy’s trust services and controls as well as the independent auditor’s opinion of DroneDeploy’s system design.
Now, we’re pleased to announce we’ve achieved SOC 2 Type 2 certification.
- SOC 2 Type 1: Describes how security and compliance controls are “designed” based on a specific point in time.
- SOC 2 Type 2: Describes the “design and operating effectiveness over a period of time (audit period),” one year in our case.
Type II is more comprehensive than Type I and covers the details of established security controls and policies to ensure companies rigorously apply and adhere to those standards without exceptions.
At DroneDeploy, we are consistently maturing our security program and best practices that are auditable, repeatable, and built to a framework baseline easy for everyone to understand.
SOC (System and Organization Controls) is an American standard that belongs to AICPA (the American CPA association). US public companies and companies that target the US market rely on SOC to help ensure that the services they use meet security and availability requirements.
We will continue to lead by example and build security and privacy practices that are transparent, repeatable, auditable, and rigorous.
Want to learn more? Check out our State of the Drone Industry 2022 report.