SOC 2 (Trust Services Criteria)

Reporting framework on controls relevant to Security, Availability, Confidentiality, Processing Integrity, and Privacy of a service organisation.

In progressAuthoritative source ↗

ZenoXCare scope under SOC 2 (Trust Services Criteria)

Next.js platform, Postgres tenant data plane, payment orchestration, identity stack.

Linked credential

SOC 2 Type II

External CPA firm (engagement TBD)

Trust Services Criteria (Security, Availability, Confidentiality, Processing Integrity, Privacy) covering the Next.js platform, Postgres tenant data plane, payment orchestration, and identity stack.

View →

Frequently asked

What is SOC 2 (Trust Services Criteria)?: SOC 2 (Trust Services Criteria) is published by AICPA. Reporting framework on controls relevant to Security, Availability, Confidentiality, Processing Integrity, and Privacy of a service organisation.
Is ZenoXCare aligned to SOC 2 (Trust Services Criteria)?: Yes — ZenoXCare's alignment to SOC 2 (Trust Services Criteria) is in progress — gap-closing work is actively underway. Scope: Next.js platform, Postgres tenant data plane, payment orchestration, identity stack.
Where can I read the authoritative source for SOC 2 (Trust Services Criteria)?: SOC 2 (Trust Services Criteria) is published at https://www.aicpa-cima.com/topic/audit-assurance/audit-and-assurance-greater-than-soc-2 by AICPA. ZenoXCare links to this canonical source on the standard's entity page so customers and regulators verify against the publisher directly.
Is there a third-party certification for SOC 2 (Trust Services Criteria) on ZenoXCare's roadmap?: Yes — the related third-party attestation is tracked in ZenoXCare's certifications registry under id "soc-2-type-2". Open the certification's entity page (linked from the standard page) for issuer, status, renewal cadence, and accountable owner.

Every standard on this page is anchored to its publisher's authoritative source — linked above. ZenoXCare's alignment status is reviewed quarterly by our compliance team and verified independently by the auditors who issue our certifications. To request the underlying evidence pack, please contact compliance.

← All standards Global standards & compliance

Loading standard details…

Frequently asked

What is SOC 2 (Trust Services Criteria)?

SOC 2 (Trust Services Criteria) is published by AICPA. Reporting framework on controls relevant to Security, Availability, Confidentiality, Processing Integrity, and Privacy of a service organisation.

Is ZenoXCare aligned to SOC 2 (Trust Services Criteria)?

Yes — ZenoXCare's alignment to SOC 2 (Trust Services Criteria) is in progress — gap-closing work is actively underway. Scope: Next.js platform, Postgres tenant data plane, payment orchestration, identity stack.

Where can I read the authoritative source for SOC 2 (Trust Services Criteria)?

SOC 2 (Trust Services Criteria) is published at https://www.aicpa-cima.com/topic/audit-assurance/audit-and-assurance-greater-than-soc-2 by AICPA. ZenoXCare links to this canonical source on the standard's entity page so customers and regulators verify against the publisher directly.

Is there a third-party certification for SOC 2 (Trust Services Criteria) on ZenoXCare's roadmap?

Yes — the related third-party attestation is tracked in ZenoXCare's certifications registry under id "soc-2-type-2". Open the certification's entity page (linked from the standard page) for issuer, status, renewal cadence, and accountable owner.

ZenoXCare — marketing

SOC 2 (Trust Services Criteria)

ZenoXCare scope under SOC 2 (Trust Services Criteria)

Third-party attestation in progress

Frequently asked

SOC 2 (Trust Services Criteria)

ZenoXCare scope under SOC 2 (Trust Services Criteria)

Third-party attestation in progress

Frequently asked