SOC 2 Type II Certified

The Ultimate Certification: SOC 2 Type II


Edafio achieved the SOC 2 Type II certification through the MSP Cloud Verify Program™, proving our dedication and promise to security and delivering high-quality services through internal controls and processes. At Edafio, we are passionate about our work and the peace of mind we provide our clients. As companies continue to rapidly move to the cloud and expand their technology capabilities by the minute, we aim to deliver innovative and transformative solutions without jeopardizing security, quality or compliance. 

“Edafio’s founding core values are one team unified by humility and mutual respect, unquestionable integrity, and a relentless commitment to client success,” says Edfaio’s President/CEO Kenny Kinley. “For us, this translates directly into our commitment to keeping our clients’ data safe and secure. We aspire to meet the highest standards of accountability. This certification reiterates our ongoing commitment to protect our client’s data so they can focus on their core business operations.”

Kenny Kinley, President and CEO
Edafio is SOC2 Type II

What is SOC 2 Compliance?

SOC 2 is an in-depth external audit presented in a comprehensive final report that closely examines a company’s information systems, ensuring that its information security practices meet five trust principles established by The American Institute of CPAs  (AICPA): security, availability, processing integrity, confidentiality, and privacy. Service Organization Control (“SOC 2”) certification awards businesses who demonstrate their ability to meet the institute’s high standards in each of those categories. 

What Is Measured by a SOC 2 Type 2 Report?


Edafio undergoes regular audits to ensure we meet each of the five trust principles’ requirements to remain SOC 2-compliant. SOC 2 Type II compliance evaluates information security policies and procedures. It audits a cloud service provider’s internal controls, capturing how a company safeguards client data and how well those controls operate. The report helps prospects and clients assess the risks associated with third-party cloud services. It’s essentially the best way to know whether your data will be safe with a managed service provider. For a provider to meet SOC II compliance, they need to manage client data with the five Trust Categories top of mind:

  1. Security  – protects the company’s system against unauthorized access to meet its commitments and system requirements.
  2. Availability  – makes the company’s system authorized for use as agreed upon in contracts with clients.
  3. Processing Integrity  – guarantees the complete, accurate, trusted and timely processing of information.
  4. Confidentiality  – protects any information considered confidential with proper controls.
  5. Privacy  – handles any personal information per your company’s privacy notice.

The documentation allows the auditor to evaluate an up-to-date history of the company’s efforts around:

  1. Data governance
  2. Policies and procedures
  3. Confidentiality, privacy and service transparency
  4. Change management
  5. Service operations management
  1. Information security
  2. Data management
  3. Physical security
  4. Billing and reporting
  5. Corporate health

Why Partner with a SOC2 Type II Certified Provider?

The report allows organizations to measure their technology provider’s integrity.

The SOC 2 Type II report proves we have proper internal controls and best practices in place; it also empowers decision-makers to weed out technology providers who may put their business data and reputation at risk.

Why Edafio


Our Edafio team has worked tirelessly to support the requirements for SOC 2 to ensure the security of our clients. Our dedication to compliance, security, and governance allows us to help our large enterprise clients in the Healthcare, Government, Financial Services, and other highly-regulated industries because we understand the importance of our clients’ data to their reputation and ultimate success.
If you are in the cloud, or part of a regulated industry, working with a SOC 2 provider cannot be overstated. And with more companies shifting their IT environment to the cloud, the security of that data is more critical than ever. As cloud providers ourselves, Edafio is uniquely positioned to ensure your cloud-based data and applications are safe.

At Edafio, we offer Technology Managed Services to businesses looking for a long-term technology partner they can trust. We work with our clients to provide the business intelligence and technology expertise they need to grow and protect their company. When threats arrive, we are ready to act. Our thorough processes allow us to indicate threats to your organization, alert you when something happens, and move quickly to prevent data loss or compromise.
Learn more about our approach to data security and how we can help you by scheduling a time to visit with an Edafio specialist today.

HAVE A QUESTION ABOUT ONE OF OUR SERVICES?