Security Certifications

SOC 2 Type 2

RecordPoint undergoes SOC 2 Type 2 audits to verify that technical and policy controls governing the security, availability and confidentiality of Records365 are operating correctly.

As part of the audit process, RecordPoint is assessed against the following trust service principles:

  • Confidentiality – maintain all customer data as confidential
  • Security – protect the service against unauthorized access
  • Availability – maintain service availability for operation and use as committed or agreed

A 3rd party auditor verifies that these controls and policies pertaining to the trust service principles are operating through a series of on-site interviews, control demonstrations and evidence-based analysis.

The latest SOC 2 Type 2 report can be made available upon request by emailing

For more information regarding our information management and record management competencies please visit our Competencies & accreditations page.