Our Commitment to Security

At Sugarwish Inc., we are committed to protecting the privacy, confidentiality, and integrity of our customers' information. We understand the importance of information security and have taken extensive measures to ensure that our customers can trust us with their data. One of the ways we demonstrate this commitment is through our SOC 2 Type 1 report, which provides independent validation of our security controls.

I. Scope of the SOC 2 Type 1 Report

Our SOC 2 Type 1 report, conducted by an independent certified public accounting firm, covers the Trust Services Criteria for Security, Availability, Confidentiality, Processing Integrity, and Privacy. The audit was completed as of June 30, 2022, and it evaluates the design and operating effectiveness of our controls at that time.

II. Overview of Key Security Controls

The SOC 2 Type 1 report evaluates the following key security controls at Sugarwish:

  1. Access Control: We employ robust access controls to ensure that only authorized individuals have access to our systems and data.
  2. Network Security: Our network infrastructure is designed to prevent unauthorized access, detect and mitigate threats, and maintain the confidentiality, integrity, and availability of customer data.
  3. Data Encryption: We use strong encryption methods to protect data at rest and in transit.
  4. Vulnerability Management: We continuously scan our systems for vulnerabilities, and we have a formal process for addressing identified vulnerabilities.
  5. Incident Response: Our incident response program is designed to identify, respond to, and remediate potential security incidents in a timely and effective manner.
  6. Personnel Security: We conduct thorough background checks and provide ongoing security training to all employees to maintain a security-conscious workforce.
  7. Data Backup and Disaster Recovery: We maintain backup copies of customer data and have a comprehensive disaster recovery plan in place to ensure the availability and continuity of our services.

III. Obtaining a Copy of the SOC 2 Type 1 Report

Sugarwish provides a copy of our SOC 2 Type 1 report to customers under a non-disclosure agreement (NDA). To request a copy of the report or for more information, please contact us.

At Sugarwish, we are dedicated to maintaining the highest level of security for our customers. We will continue to invest in and improve our security posture and ensure that our practices align with industry best practices and regulatory requirements. Your trust in us is paramount, and we are committed to earning and maintaining that trust.