April 29, 2024
4 min

Herald Achieves SOC 2 Type II Compliance, Demonstrating Commitment to Security in Serving Insurance Industry

Herald, a leading provider of innovative solutions in the insurance industry, proudly announces its achievement of SOC 2 Type II compliance. This significant milestone underscores Herald's unwavering commitment to maintaining the highest standards of security in its operations, ensuring the trust and confidence of its valued clients.

Developed by the American Institute of Certified Public Accountants (AICPA), the SOC 2 (Service Organization Control) framework is a rigorous set of criteria used to assess and validate the effectiveness of a company's security controls and processes. The attainment of SOC 2 Type II compliance demonstrates Herald's dedication to protecting sensitive data and infrastructure, critical for serving large and important clients in the insurance sector.

"As a trusted partner to numerous industry leaders, we understand the paramount importance of security in today's digital landscape," said Jacob Barnett, CTO of Herald. "Achieving SOC 2 Type II compliance is a testament to our ongoing commitment to safeguarding our clients' information and upholding the highest standards of integrity and reliability."

Conducted by Sensiba, a nationally recognized CPA firm registered with the Public Company Accounting Oversight Board, this attestation report affirms that Herald’s information security practices, policies, procedures, and operations meet the rigorous SOC 2 Trust Service Criteria for security, availability, and confidentiality.

The SOC 2 Type II certification validates Herald's adherence to stringent security practices, including data encryption, access controls, monitoring, and incident response protocols. By successfully completing the comprehensive audit process, Herald demonstrates its ability to protect sensitive information and mitigate risks effectively.

Herald's SOC 2 Type II compliance further strengthens its position as a preferred partner for brokers, carriers and technology providers seeking reliable and secure solutions. With this certification, clients can have full confidence in Herald's ability to safeguard their data, maintain regulatory compliance, and deliver exceptional service.

Herald uses Drata’s automated platform to continuously monitor its internal security controls against the highest possible standards. With Drata, Herald has real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems.

About Herald

Herald builds digital infrastructure for commercial insurance. Developers who use Herald can quote and bind insurance from multiple carriers through a single API.

For brokers and technology providers looking to engage with carrier partners via API, Herald helps construct reliable connections and dramatically accelerate product development timelines. For carriers and MGAs enabling connectivity via API, Herald builds and manages integrations with new and existing distribution partners.

‍If you’re just interested in learning more about Herald, visit our website or feel free to email us at hello@heraldapi.com. Follow us on Twitter and LinkedIn to stay up to date.

About Drata

Drata is the world's most advanced security and compliance automation platform with the mission to help businesses earn and keep the trust of their users, customers, partners, and prospects. With Drata, thousands of companies streamline over 10 compliance frameworks—such as SOC 2, ISO 27001, GDPR, and more—through continuous, automated control monitoring and evidence collection, resulting in a strong security posture, lower costs, and less time spent preparing for annual audits. The company is backed by ICONIQ Growth, Alkeon Capital, Salesforce Ventures, GGV Capital, Cowboy Ventures, Leaders Fund, Okta Ventures, SVCI, SV Angel, and many key industry leaders. For more information, visit drata.com