MeridianLink takes the security of the data entrusted to us by our clients very seriously, as well as the continued availability of our SaaS applications. We recognize that the cyber threats facing us, our clients, and the financial services industry are greater than ever. We have, therefore, developed and implemented an advanced and robust information security program for the ongoing protection of our applications, networks, and systems.
Today, we are happy to announce a new milestone validating all we do to keep our users’ data safe and secure through the strength of our information security and data privacy controls. While we have previously had SOC 2 Type 2 certification for our organization, we have continued to grow, and it is important to have the same security controls for each acquired entity as it is for our core. So, we have worked diligently to receive SOC2 certification for all our entities under MeridianLink. Our SOC 2 Type 2 report validates the strength and effectiveness of our system and organizational controls. This report details the extreme care we take to earn and maintain user trust in our company, systems, and products.
Achieving this credential is one way we show our safeguards for user data, cloud service management, and the protection of sensitive user information. This enterprise-level verification is rigorously evaluated by third-party experts, and we are pleased to say that all our business units are now included in the MeridianLink SOC 2 certification.
The certification reaffirms our long-standing commitment to securing and protecting the information of everyone using any of our products, from account opening to data verification and everything in between. At MeridianLink, security is part of our DNA. That’s why we keep security at the core of our products, infrastructure, and company policies. Security and trust are the foundation of MeridianLink’s commitment to our customers, and we continue to grow our information security program. Our commitment includes:
- As a trusted leader in the digital lending space, we continuously aim to exceed industry standards and customer expectations to deliver security controls that are effective at protecting and defending customer data.
- An independent audit firm conducted a comprehensive year-long audit of our servers and systems. They verified that our information security practices, policies, procedures, and operations meet rigorous SOC 2 standards.
- Our SOC 2 Type 2 Audit is more than just self-assurance of our internal controls – it is a full independent audit and verification of the efficacy of our controls related to the secure processing of customer data that was entrusted to us. This assessment provides valuable insight into not only what we do, but how well we do it on any given day.
At MeridianLink, we are committed to conducting this independent review of our information security practices via the SOC 2 Type 2 process annually. We will continue to reliably provide our customers with the highest standard of information security and look forward to sharing more updates like this in the months and years ahead.