July 5, 2023
2min

Herald Receives SOC 2 Type 1 Attestation Report

Herald is proud to announce that we’ve received a clean SOC 2 Type 1 attestation report. This rigorous, independent assessment of our internal security controls serves as validation of our dedication and adherence to the highest standards for security, confidentiality, and privacy.

This is an important milestone but is in no way an end to our commitment to our customers and the security of their data. Herald views security as the foundation upon which our products are built and upon which trust with our customers is earned and maintained.

Herald uses Drata’s automated platform to continuously monitor its internal security controls against the highest possible standards. With Drata, Herald has real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems.

“Receiving our SOC 2 Attestation Report and leveraging Drata for monitoring reflects the dedication Herald has to ensuring our data is secure. We’re excited about being able to provide this report for current and future customers as we continue to grow.” - Jacob Barnett, CTO of Herald

Conducted by Sensiba, a nationally recognized CPA firm registered with the Public Company Accounting Oversight Board, this attestation report affirms that Herald’s information security practices, policies, procedures, and operations meet the rigorous SOC 2 Trust Service Criteria for security, confidentiality, and privacy.

Developed by the AICPA, SOC 2 is an extensive auditing procedure that ensures that a company is handling customer data securely and in a manner that protects the organization as well as the privacy of its customers. SOC 2 is designed for service providers storing customer data in the cloud.

As our partners in the insurance expand their digital capabilities, its important that they have partners in their journey who hold the same high security standards. We welcome all customers and prospects who are interested in discussing our commitment to security and reviewing our SOC compliance reports to contact us.

About Herald

Herald builds digital infrastructure for commercial insurance. Developers who use Herald can quote and bind insurance from multiple carriers through a single API.

For brokers and technology providers looking to engage with carrier partners via API, Herald helps construct reliable connections and dramatically accelerate product development timelines. For carriers and MGAs enabling connectivity via API, Herald builds and manages integrations with new and existing distribution partners.

‍If you’re just interested in learning more about Herald, visit our website or feel free to email us at hello@heraldapi.com. Follow us on Twitter and LinkedIn to stay up to date.

About Drata

Drata is the world's most advanced security and compliance automation platform with the mission to help businesses earn and keep the trust of their users, customers, partners, and prospects. With Drata, thousands of companies streamline over 10 compliance frameworks—such as SOC 2, ISO 27001, GDPR, and more—through continuous, automated control monitoring and evidence collection, resulting in a strong security posture, lower costs, and less time spent preparing for annual audits. The company is backed by ICONIQ Growth, Alkeon Capital, Salesforce Ventures, GGV Capital, Cowboy Ventures, Leaders Fund, Okta Ventures, SVCI, SV Angel, and many key industry leaders. For more information, visit

drata.com