Subscribe to Email updates

Please use a valid email address.

Privacy Policy.
SendBird adds SOC2 Type 2 Report to HIPAA, ISO27001, and GDPR in less than a year

SendBird adds SOC2 Type 2 Report to HIPAA, ISO27001, and GDPR in less than a year

Feb 01, 2019

SendBird is elated to announce that it has received a SOC2 Type 2 report for successfully completing the SOC2 examination, demonstrating to its customers that it upholds the highest standards for the five trust service criteria: security, privacy, availability, confidentiality, processing integrity of our client’s chat and messaging data.


Ensuring that security and privacy of our clients’ data is a key objective for SendBird.

Talk to an expert in secure messaging today

In less than a year, we’ve complied with GDPR, achieved ISO27001 and HIPAA compliance, and, now, we’ve added the SOC2 Type 2 report to the list of assurances that your data is protected. You can read our press release here.

SOC2, governed by the American Institute of Certified Public Accountants, is a report that gives detailed information and assurances to business partners and users about a service according to the standardized trust service criteria. There are two reports: Type 1 and Type 2. Type 1 gives assurances that the design of a processing system meets requirements, whereas Type 2 details the effectiveness of that design’s operation. Since SendBird received the Type 2 report, customers can be confident that our day-to-day operations effectively protect their chat and messaging data.

The SOC2 examination is administered by an independent auditor to confirm SendBird’s compliance with the 5 trust service criteria:

  • Security - SendBird protects its system from unauthorized access.
  • Privacy - SendBird handles personal data in accordance with its privacy policy.
  • Availability - SendBird delivers the performance needed by its clients in accordance with our SLA and ensures performance, availability, and failover protection.
  • Confidentiality - SendBird severely limits access to client data to only necessary parties and ensures that data is not accessible in transit (i.e. it is encrypted).
  • Processing integrity - SendBird processes data in an accurate, timely, and authorized manner.

SOC is also the standard framework for measuring the control of financial information, so it sets a high standard on the control of any sensitive personal information. This is good news for current and potential customers in financial services, healthcare, insurance, human resources, or any business that deals with personal information.

Customers may request a copy of the SOC2 Type 2 report for the verified details of our systems and protections under a non-disclosure agreement and at SendBird’s discretion.

We're Hiring!
Help SendBird build the world's no. 1 messaging platform
We're Hiring!
Help SendBird build the world's no. 1 messaging platform
Related articles
SendBird Ranks No. 38 on Y Combinator Top Companies List
Y Combinator has updated its list of the top 100 companies that began at the famed accelerator program. As a member of the Winter 2016 Y Combinator class, we’re proud to annou
Vice President of Operations
Migrating chat made easy with Sync Server
Introduction Part of the challenge of migrating from one chat provider to another is not having a live migration solution ready. Building a live migration solution can be cost
Solutions Engineer
A letter to Layer’s customers
We at SendBird understand how hard development teams work to create great user experiences for their customers. It is often delicate for development teams to make decisions to
Chief Executive Officer
© SendBird 2019. All rights reserved.
Follow us