<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=191325388179113&amp;ev=PageView&amp;noscript=1">

2 min read

Our Commitment To Your Security: Rocket Dollar Is SOC 2 Type 1 Compliant

Our Commitment To Your Security: Rocket Dollar Is SOC 2 Type 1 Compliant

We are proud to announce that Rocket Dollar is now SOC 2 Type 1 compliant. At Rocket Dollar, the online security of our customers' information is our first priority. We take the trust of our customers seriously and have undertaken a SOC audit to ensure the protection of their personal data. Our undertaking of a rigorous compliance audit is only the foundation of our commitment to security and we plan to build on that foundation by getting a SOC 2 Type 2 certification in the second quarter of 2019.


What does Rocket Dollar being SOC compliant mean for me?

Originally developed by the AICPA (American Institute of CPA’s), SOC 2 is a defined criteria for managing customer data, and is based on five “Trust Service Principles”. These are:

  • Security
  • Availability
  • Processing Integrity
  • Confidentiality
  • Privacy

 

Security
The auditors looked for things such as having intrusion detection (software that looks for hacking activity), anti-virus, strong passwords, and auditing of all access to any sensitive data customers have entrusted us with. They also ensured we have strong, secure networks using the best-in-class encryption available. In today’s digital landscape, security is top priority and this audit put us in the best position to defend your data against theft and illegal disclosure.

Availability
Availability ensures that Rocket Dollar’s systems are always online, resistant to technical issues and disasters. In order for Rocket Dollar to pass the Availability portion of the SOC audit, we had to demonstrate to the auditors that we have redundant computer systems in place, that we properly manage changes to our software, and that customer data is backed up and can be quickly brought back online in the event of a disaster.

Subscribe to Our Newsletter
Processing Integrity
Processing Integrity addresses whether or not a Rocket Dollar system achieves the purpose for which it was designed. Also tested was the accuracy of our data processing systems, which must be complete, valid, accurate, and timely.

Confidentiality
The confidentiality portion of the SOC audit is a test of the security of data housed with Rocket Dollar. To pass this portion, we must continually ensure that data is restricted to a specified set of persons inside our organization. Again, these people must have passed a background check, as well as use compliant devices to access customer data.

Privacy
The privacy principle addresses our adherence to our own privacy policy regarding the use, retention, disclosure, and disposal of Personally Identifiable Information (PII) entrusted to us.
PII refers to details that can be used to identify an individual (SSN, Name, address, etc).

In essence, SOC is an external auditing procedure that ensures that data provided to us is always protected and that the security of our customers is at the forefront of our operations.

Is SOC compliance a requirement for Retirement Plan providers?

No, while SOC compliance is not a formal requirement for software as a service (SaaS) or retirement plan providers, the leadership at Rocket Dollar felt it an important step to ensure the online safety of our customers.

We will continue to undergo regular external audits in order to ensure that Rocket Dollar is always adhering to security best practices, and push forward on our commitment to security.

Best,
Thomas Young
Chief Product Officer

DOWNLOAD EBOOK

How Austin Founders Can Raise More Money Faster

How Austin Founders Can Raise More Money Faster

Startup founders face many challenges. One of the biggest startup challenges is securing enough funds to meet cash flow needs. Cash flow issues can...

Read More
Rocket Dollar in the News

Rocket Dollar in the News

Rocket Dollar recently was the subject of a story in Ignites, a leading trade publication for the mutual fund industry. Our co-founder Henry Yoshida...

Read More
Rocket Dollar Self-Directed Accounts: Win-Win for Investor Relations

Rocket Dollar Self-Directed Accounts: Win-Win for Investor Relations

When competing for investor dollars, merely offering a healthy return is not always enough to keep investors happy. Keeping investors engaged with...

Read More