Informatica Earns SOC 1 Type 2 Compliance to Power Digital Transformation

Last Published: Jun 10, 2022 |
Bill Burns
Bill Burns

Chief Information Security Officer

I’m pleased to share that Informatica has successfully achieved SOC 1 Type 2 compliance. This validates that our customers can effectively meet their financial reporting obligations with Informatica Intelligent Data Management Cloud (IDMC) controls. We are committed to assuring that the IDMC control environment is secure, available and reliable. This achievement further validates that IDMC is the most secure and trusted cloud data management platform for digital transformation and cloud modernization. Our compliance also confirms that we safely manage and protect sensitive data with our cloud products and services. And we can do so with a high degree of security, accuracy and reliability.

SOC 1 Compliance Is Critical for Customer Trust

A SOC 1 audit report assures customers that IDMC is operating in a trustworthy manner to support our customers’ IT controls specifically related to financial reporting processes, as attested by a trusted third-party auditor. Successfully completing the SOC 1 Type 2 audit demonstrates that Informatica has continuously adhered to stringent compliance controls during the past 12 months. This signifies that we are a trustworthy custodian of our customers’ financial information and a trustworthy partner to IT departments in the shared responsibility model of cloud security. In this era of data proliferation, enterprises need to have trusted, objective assurance that their data is safeguarded. This is why Informatica has made it a priority to continue to invest in our security posture.

IDMC SOC 1 compliance symbolizes a seal of approval for public and tightly regulated private companies that need to accurately report their financials but also modernize their data processing and management capabilities to take advantage of cloud-based stacks. The greater the regulatory pressure on a company, the greater the scrutiny of its financial reporting. SOC certification — particularly SOC 1 Type 2 — alleviates concerns over such scrutiny.

Informatica has always been committed to the safety and security of our Intelligent Data Management Cloud. We are dedicated to ensuring that customer data is secure, reliable and available. We ensure that our services are as well. IDMC SOC 1 Type 2 compliance further validates this dedication.

Informatica Cloud Products Covered by this SOC 1 Type 2 Audit

The SOC 1 Type 2 audit covers the same cloud products that were certified in our 2021/2022 SOC 2 Type 2 audit. These include:

Which Informatica Customers Need SOC 1 Compliance

SOC 1 compliance is critical for our customers who are undergoing financial reporting transformation projects. It is also important for customers who want to use IDMC to process data that is related to their audited financial reporting, or data that affects their company’s revenue.

SOX requires that public companies assess the effectiveness of their internal controls for financial reporting. A SOC 1 for IDMC supports this. Section 404 of SOX requires that the auditor of a publicly held Accelerated Filer (companies with more than $75 million in market capitalization) attest to, and report on, management’s assessment of its internal controls. The PCAOB has indicated that a SOC 1SM Type 2 report is the only one that independent auditors may rely on as it pertains to service organization controls.

Informatica Now Has SOC 1, SOC 2, and SOC 3 Certifications

Informatica is the most secure and trusted cloud data management provider. As proof, we are committed to having industry certifications and attestations that minimize risk associated with industry compliance and corporate policies. CIOs, CFOs and compliance officers continue to trust Informatica with their cloud data management needs and the assurances provided by SOC 1, SOC 2, and SOC 3 compliance. IDMC enables the maximum level of assurance and confidence that our customers need for their cloud transformations.

Next Steps

Please contact your account rep for a copy of the report. Note that SOC 1 reports can only be distributed to existing customers and their auditors, not prospects, to give those clients’ auditors assurance that proper controls are implemented, operational and effective. To learn more about IDMC certifications, assessments and standards, visit our Trust Center page.

First Published: Jun 08, 2022