At Truss, we are excited to announce that we have successfully renewed our System and Organization Controls (SOC) 2 [Type II] compliance as part of our ongoing effort to maintain the highest standards of information security. As a leading banking and payments provider for construction companies, we understand the critical importance of securing our customers' sensitive information.
Why SOC 2 Matters to Our Customers
For construction companies, managing financial transactions and sensitive data securely is crucial. SOC 2 compliance assures our customers that Truss has implemented rigorous controls and safeguards to protect their data. This certification is particularly important for our customers who need to demonstrate that their financial partners adhere to industry-best practices in information security.
What is SOC 2 Compliance
The SOC 2 audit is one of the highest recognized standards of information security compliance globally. Developed by the American Institute of CPAs (AICPA), this audit allows a third-party auditor to validate a service company's internal controls concerning information security.
We partnered with Johanson Group to obtain our audited SOC 2 Report. They meticulously reviewed our internal controls, including policies, procedures, and infrastructure related to data security, firewall configurations, change management, logical access, backup management, business continuity and disaster recovery, security incident response, and other critical areas of our business.
Continuous Commitment to Excellence
Thanks to a company-wide effort at Truss and the assistance of our trusted partner Johanson Group, we successfully renewed our SOC 2 compliance. We received an Auditor’s Report, which demonstrates that our policies, procedures, and infrastructure meet or exceed SOC 2 criteria. By partnering with Johanson Group, we confidently state that we go above and beyond the minimum SOC 2 requirements. We have integrated our critical infrastructure to monitor compliance with the SOC 2 framework 24/7/365, not just during the audit window.
Building Trust Through Security
At Truss, we believe that our relationship with customers must be built on trust. The successful renewal of our SOC 2 Report is one of many ways we aim to earn and retain that trust. SOC 2 compliance is just one aspect of our comprehensive security program. We are committed to continually improving our information security program and undergoing an annual SOC 2 audit to ensure we continue to meet and support our customers' needs.
Thank you for your continued trust in Truss. We are dedicated to providing secure, reliable, and innovative banking and payment solutions for the construction industry.
Truss is a financial technology company, not a bank. Banking services provided by Thread Bank; Member FDIC. The Truss Visa® Card is issued by Thread Bank pursuant to a license from Visa U.S.A. Inc. and may be used everywhere Visa cards are accepted.