Demo · sample data, not for production use · request the real tool →

Search…⌘K

SOC 2 readiness

Per-control posture across the AICPA Trust Services Criteria. Implementation status, evidence vault, and prior attestation history — one source of truth for every auditor request.

57%

Type II readiness

24 of 42 in-scope controls fully implemented

Excludes 1controls marked N/A (e.g. physical access for fully remote ops, where the cloud provider's SOC 2 report inherits the control). Anything below 90% needs an active remediation plan before the audit window opens.

Next auditPeriod ends 2026-09-30150 days to close window

Total controls

43

In-scope + N/A

Implemented

24

Partial

14

Active remediation

Not implemented

4

— blocks attestation

Evidence rows

30

Hashed + stored

Trust Services Criteria

Security (Common Criteria)

Confidentiality

Confidentiality

Processing Integrity

Processing Integrity

Recent control activity

Status changes, evidence uploads, and auditor flags

View all controls →

PS
CC6.1 Owner uploaded MFA coverage report
Priya Shah · 9d ago
AC
CC6.6 Status moved partial → implemented
Anthony Coles · 8d ago
MH
CC8.1 Q1 change sample evidence attached
Marcus Hill · 11d ago
AP
CC7.5 Auditor flagged: missing recovery runbooks
A-LIGN portal · 5d ago
MH
A1.2 Restore test passed (RTO 47m vs 60m target)
Marcus Hill · 44d ago
S
CC3.3 Stale review — last touched 210d ago
System · 1d ago
LP
CC4.1 Internal audit walkthrough completed
Lena Park · 19d ago
AC
PI1.5 Owner reassigned to VP Engineering
Anthony Coles · 3d ago

Stale reviews

Controls untouched for > 180 days

not implemented
CC7.5
220d since last review
not implemented
CC3.3
210d since last review
not implemented
A1.3
198d since last review
partial
CC2.3
195d since last review
partial
CC7.4
188d since last review
not implemented
PI1.5
185d since last review