SecureKey achieves SOC 2 certification in security and privacy
July 22, 2020

Internationally recognized standard ensures safe, secure digital identity processes

Our goal at SecureKey is to provide identity and authentication that simplifies consumer access to online services and applications safely and securely. As a leader in this space, we are constantly looking for ways to innovate and improve our solutions to increase these benefits for organizations and consumers alike.

SecureKey recently went through a System and Organization Controls (SOC) 2® Type I Audit for our offerings, including our Verified.Me and SecureKey Concierge services. This independent audit, performed by Deloitte LLP, confirmed that SecureKey has designed and implemented controls to achieve the audit’s requirements for security and privacy. We are thrilled to announce this internationally recognized certification.

The audit, using criteria established by the American Institute of Certified Public Accountants (AICPA), evaluates whether SecureKey’s internal controls securely manage data while also protecting the interests of our customers and our organization. SOC 2 measures this against a series of principles including security and privacy: two key tenants of SecureKey’s mandate since its inception that remain key considerations in every solution we develop.

SecureKey’s digital identity solutions have always kept consumers in mind. You have placed a great deal of confidence and trust in us to ensure your digital identities are handled properly when accessing the services you choose. We are honoured to continue earning your trust by developing the world’s safest and most secure digital identity processes for your benefit.

With the increase in remote identity verification across sectors as a result of COVID-19, audits like this help us practice what we preach and ensure our services meet the highest standards when it comes to digital identity. It also helps us provide transparency into our business and how data moves through and is managed within our services.

Measuring our business against these international benchmarks, reference points and standards are important parts of providing you with the best, most secure solutions possible. In addition to feedback from our customers and stakeholders, these third-party evaluations help us find areas to improve.

As part of this commitment to independent examination, we will  be undergoing another SOC 2  audit in 2021 to further evaluate our platforms and aspire for a higher certification of safety and security. Type I focused on our systems and whether our design was suitable to meet these principles, while Type II will expand to also include  the operational effectiveness of these systems.

The question of digital identity is a global one. While Canada is in a leadership position, we believe it is important to look outside of our borders for ideas, inspiration and standards to gain a fulsome perspective on how our framework compares to the rest of the world. In doing so, we can reveal what we can do to further cement our leadership role and how to best look at our company through a critical lens. We are thrilled to take our digital identity offering to the next level and look forward to sharing updates with you in the coming months.

To learn more about SecureKey’s offerings, please join us virtually at the upcoming Canadian Opening Banking Forum where we’ll discuss Customer Authentication, Consent and Control of Personal Information. Tickets are available here.

For more information about our organization and offerings, please visit SecureKey.