We're very happy to share that Tinybird is now SOC 2 Type II compliant. This is a major step forward for Tinybird and a testament to our commitment to protecting the data of our customers - and their customers.

For those who may not be familiar with SOC 2, it's a set of standards that assesses the security, availability, and confidentiality of a company's systems and data. By achieving SOC 2 Type II compliance, Tinybird has demonstrated that we have robust controls in place to protect our customers' sensitive information and that we regularly test and monitor those controls to ensure their effectiveness.

This is especially important for Tinybird, as we are a platform to help developers build fast data pipelines over data at any scale. Our customers trust us to handle and process large amounts of their data, and SOC 2 Type II compliance shows that we take that responsibility seriously.

You may have seen our announcement several months back about SOC 2 Type I compliance, but we’ve leveled up our game since then. So what does it mean to be SOC 2 Type II compliant? First, it means that we have undergone a thorough audit of our systems and controls by an independent third party. This audit looked at everything from our physical and environmental controls to our access and identity management policies, and it confirmed that we meet rigorous security standards. We have committed to and followed over 50 specific and documented security controls to meet those standards.

Second, SOC 2 Type II compliance indicates that we are strictly committed to maintaining those controls over time. We will continue to regularly test and monitor our systems to ensure that they remain secure, and we will undergo independent audits on an annual basis to confirm our security posture.

Trust is earned, not given, and we're proud to have achieved this important certification to celebrate the trust we’ve earned from our customers. It's just one more way that we're working to give our customers confidence in the security and integrity of their data when using Tinybird.

If you have any questions about our SOC 2 Type II compliance or any other aspect of our security and data protection practices, you can check out trust.tinybird.co, or contact us directly.