What is SOC 2?

Systems and Organization Controls 2 (SOC 2) is a security framework that specifies how organizations should store and protect customer data from unauthorized access, security incidents, and other vulnerabilities. SOC 2 provides guidelines on how to manage and store customer data by focusing on five Trust Services Criteria.

VPM undergoes annual audits in order to maintain SOC 2 Type 2 compliance. As an organization that handles a significant volume of important and sensitive mail, we want to provide assurance that we handle your mail and data in a secure manner that meets or exceeds industry-standard requirements.

What this means for you

  • We do not sell, rent, or provide your data to outsiders unless you yourself grant them.
  • We protect your physical mail with 24/7 security monitoring at our facility and only authorized persons can access our mail processing centers.
  • All processing is done at secure VPM processing centers and by employees who are background checked and go through security training.
  • All personal mail are shredded on-site before leaving our processing center for added security.
  • Data is stored encrypted at rest and during transmission.
  • Data is stored in storage media that provides 99.999% reliability for reliability.
  • Backups are performed on a continuous basis and encrypted.

We are committed to maintaining high standards of security and privacy, which can help reduce the risk of data breaches. We follow strict protocols to protect your personal and financial information from unauthorized access or misuse.

If you'd like to review our SOC 2 audit report, please contact us.

Did you know there's different types of SOC certifications? Visit our blog to learn more.

Still need help? Contact Us Contact Us