~3 minute read

Here at Chata, data access is our obsession. Our vision is to make it as easy as possible for every business user to get the data they need to make decisions. Data is a valuable asset to our customers and end users, and we’re committed to ensuring that it’s secure and protected.

In light of this, Chata is proud to announce that we are now SOC 2 Type II compliant. Reaching this milestone means that we’ve received independent validation that Chata’s information security controls provide sufficient security for our customers’ data. Meeting the standards of the SOC 2 Type II audit is a key component of our goal to ensure our customers and users can depend on the security of their data with AutoQL.

 

What is SOC 2 Type II compliance and why is it important?

The Service Organization Controls (SOC) 2 Type II report is granted when a company completes a third-party audit that assesses the efficacy of security protocols, procedures, and controls. The examination includes testing and evaluation of the systems and processes we have in place to verify that we’ve demonstrated a reliable commitment to providing ongoing security assurance.

Achieving compliance indicates that Chata meets a standard of excellence recognized across the tech industry.

Building trust is an integral part of the customer journey. The SOC 2 report is designed to provide customers and users with the confidence that their data is secure, so they can focus on analyzing their information and uncovering insights with AutoQL.

The SOC 2 report is for service organizations that hold, store, or process user information. Chata’s flagship solution, AutoQL, is an AI-driven system that allows anyone to ask questions about their data in their own words and receive immediate answers through our embeddable conversational user interface components. We employ leading-edge natural language to database query language translation technology to make it easy for every business user, even non-technical individuals, to query their database without writing code.

AutoQL users access confidential financial and operational data stored in their own database through our API. With valuable information moving through the system, data security is an essential part of our promise to our customers and users. Data needs to be as accessible as possible for its intended audience and robust security protocols ensure that information is protected at every stage.

Our security initiatives include encrypting data at rest and in flight. We use non-numeric IDs to ensure that data is secure at every level and we use JWT to secure who has access to our system, and for how long. We never store a copy of our customers’ database and we provide custom user permissions structures that work for individual customers.

Learn more about our security architecture in our Dev Docs → 

 

Our commitment to continuous improvement in security

Security requires ongoing maintenance and improvement. Keeping our customers’ data safe is key to helping them maximize the value of their data and making it as accessible as possible, without compromising on privacy. Chata is committed to completing our annual SOC 2 audit to ensure that our customers can continue to rely on our security measures while  seamlessly accessing their data with confidence.

We would like to thank our awesome security team led by Information Security Engineer, Allankrita Sharma, for their dedication and hard work on this initiative, and our entire organization for their ongoing dedication to the security and protection of our customers’ data.