BOTTOM LINE UPFRONT
Accordion has completed a SOC 2 Type II examination – providing independent validation that our data security, availability, and confidentiality controls are designed and operating effectively. For private equity sponsors, CFOs, and operating teams, that means greater confidence that sensitive financial and operational data is protected throughout the value creation and exit lifecycle.
Accordion recently announced the completion of our latest SOC 2 Type II examination. But what does that mean for us – and for you as our customer?
At Accordion, keeping customer and stakeholder data secure is a top priority. To ensure that our systems and controls have been designed appropriately to achieve that goal, we sought out third-party attestation from a qualified auditing firm. Our SOC 2 Type II report is the result of their examination.
For private equity-backed CFOs and operating teams, strong controls around data security and system reliability are increasingly a diligence requirement. A SOC 2 report provides independent assurance that Accordion has the safeguards in place to protect sensitive data and operational information throughout the value creation and exit lifecycle.
Here, we’ll explain what a SOC 2 report is, what it covers, and why we chose to undergo this rigorous compliance audit.
What is a SOC 2 report?
Obtaining a System and Organization Controls (SOC) 2 report is one way for a service organization to attest to the security of its digital environment.
Completing a SOC 2 examination through an accredited third-party auditor helps an organization communicate whether the internal controls they’ve put in place governing the security of customers’, partners’, and stakeholders’ data are properly designed, implemented, and maintained.
In other words: a SOC 2 report provides an avenue for current and potential stakeholders to assess risk by giving them a closer look at the policies and procedures put in place to ensure the organization’s services are provided safely and reliably.
What does a SOC 2 report cover?
All SOC 2 examinations are performed by accredited CPA firms in accordance with the standards defined by SSAE 18. During the exam, an independent auditor tests the effectiveness of an organization’s internal controls and evaluates how those controls align to one or more of the Trust Services Criteria established by the American Institute of Certified Public Accountants.
Accordion’s SOC 2 exam was a Type II, which assesses controls over a defined period of time. The resulting report includes both the controls that were tested and the auditor’s testing results. Accordion’s exam period spanned from August 1, 2025 to October 31, 2025.
In our case, the criteria evaluated include:
- Security: The system is protected against unauthorized access (both physical and logical).
- Availability: The system is available for operation and use as committed or agreed.
- Confidentiality: Information designated as confidential is protected as committed or agreed.
Why did we undergo a SOC 2 Type II exam?
Completing a SOC 2 Type II examination marks a huge step forward in our efforts to demonstrate our commitment to data security and ensure that we’re prepared to face the challenges of the ever-changing cybersecurity landscape.
For you specifically, this report provides independent assurance that the sensitive financial, operational, and strategic information shared with us is protected by controls that have been thoughtfully designed, implemented, and tested – supporting not only day-to-day execution, but also the increasing expectations of auditors, lenders, and diligence stakeholders.