Back to blog
We are pleased to announce that ReportPortal has successfully completed a SOC 2 Type II audit performed by Deloitte Auditing and Consulting Ltd. We have confirmed that we accurately, comprehensively, and thoroughly control many aspects related to the provision of our service and the development of our product.
The examination was conducted throughout the period from May 1, 2023, to October 31, 2023. Deloitte performed the engagement in accordance with SOC 2, a compliance standard for service organizations developed by the American Institute of CPAs (AICPA). This standard is based on the following Trust Services Criteria: Security, Availability, Processing Integrity, Confidentiality, and Privacy. Meeting SOC 2 requirements indicates that an organization maintains a high level of information security. Customers often require SOC 2 compliance from organizations, especially when choosing a SaaS provider, to ensure their data is protected. As part of the SOC 2 certification scope, our SAAS service was audited.
Deloitte noted that ReportPortal, as a part of EPAM Global, has:
A Corporate Internal Audit Function, with Internal Auditing as an independent function aimed at enhancing risk management and operations.
EPAM’s Process Asset Management, ensuring administrative and operational controls for each major functional area are documented in various policies, standards, and process descriptions.
Risk Assessment and Business Impact Analysis procedures, integrating risk management into its operations via strategies such as annual security risk assessments and a Business Continuity Program to protect corporate assets and maintain service levels.
Operational Monitoring, where exceptions in normal or scheduled processing due to hardware, software, or procedural problems are logged, reported, and resolved daily, with appropriate levels of management reviewing these reports and taking action as necessary.
Client Account Monitoring, wherein each client is assigned to a Customer Success Manager who communicates regularly to discuss issues and client satisfaction.
As a result of certification, Deloitte released SOC 2 and SOC 3 reports that you can request.
Moving forward, we plan to go through this procedure annually to ensure we are doing everything correctly, with quality and proper control, to provide our clients with the best service.
About ReportPortal
ReportPortal is an open-source solution that provides a test automation reporting dashboard, ensuring transparency and efficiency across the DevTestOps pipeline. This comprehensive tool simplifies the test automation process and quickly identifies weak areas. It lowers costs and integrates seamlessly with the most popular frameworks, all powered by a real-time dashboard.
Using ML, ReportPortal analyzes test outcomes, pinpoints the causes of failures, and assists in the defect triage process. As a SaaS, it minimizes the challenges of deployment and maintenance, while delivering all advantages of the product, efficaciously showcasing product readiness to management teams.