Trust is a foundational pillar at Craft, especially when our customers rely on our platform to support critical business decisions. Today, we are proud to share that Craft has achieved SOC 2 Type II certification, a major milestone in our ongoing commitment to security and responsible stewardship of customer data.
What SOC 2 Type II means
SOC 2 is an independent, third-party audit that evaluates how an organization designs and operates controls related to security and other trust criteria. Type II goes a step further than a point-in-time assessment. It validates not only that controls are in place, but that they operated effectively over an extended period.
This certification reflects consistent, disciplined execution of security practices, backed by independent verification.
Our commitment to security and trust
Earning SOC 2 Type II certification is an important achievement, but it is not the finish line. Security is an ongoing effort, and we are committed to continuously improving how we protect customer information and maintain reliable operations.
We will keep investing in:
- Strong internal security controls and governance
- Monitoring and incident readiness
- Secure development and operational practices
- Clear accountability across our teams
Thank you
We are grateful to our customers for the trust they place in Craft. This milestone reinforces our commitment to earning that trust every day, through transparency, rigor, and continuous improvement.
If you have questions about our security program or would like additional documentation, please reach out to your Craft contact.