E-Cubed has met SOC 2 Type II compliance against stringent standards. We utilize enterprise-
grade best practices to protect our customers’ data and work with independent experts to
verify our security, privacy, and compliance controls.

SOC 2 Report

We work with an independent auditor to maintain a SOC 2 report, which objectively certifies
our controls to ensure the continuous security of our customer’s data.
Developed by the Assurance Services Executive Committee (ASEC) of the AICPA, the Trust
Services Criteria is the set of control criteria to be used when evaluating the suitability of the
design and operating effectiveness of controls relevant to the security, availability, or
processing integrity of information and systems, or the confidentiality or privacy of the
information processed by the systems at an entity, a division, or an operating unit of an entity.

Continuous Security Control Monitoring

E-Cubed uses Drata’s automation platform to continuously monitor 100+ security controls
across the organization. Automated alerts and evidence collection allows E-Cubed to
confidently prove its security and compliance posture any day of the year, while fostering a
security-first mindset and culture of compliance across the organization.