Monokera Achieves SOC 2® Type II Attestation Report: Reinforcing Our Commitment to Security and Operational Excellence

What does the SOC 2 Evaluation mean?

SOC 2 (Systems and Organization Controls), developed by the American Institute of Certified Public Accountants (AICPA), is a globally recognized standard used to assess an organization’s information security practices. It validates that the controls in place are not only well-designed but also effective, reliable, and consistently applied over time.

The assessment is based on the Trust Services Criteria, which include:

• Security: Protecting systems against unauthorized access through measures such as firewalls, access controls, and multi-factor authentication.
• Availability: Ensuring systems are operational and accessible as needed, supported by robust backup and disaster recovery plans (DRP).
• Confidentiality: Safeguarding designated confidential information through encryption and strict internal controls.
• Processing Integrity: Verifying that systems process data completely, accurately, on time, and with proper authorization.
• Privacy: Managing personal identifiable information (PII) in accordance with our privacy policies and applicable regulations.

From SOC 2 Type I to Type II: From Design to Proven Execution

The SOC 2 framework includes two levels of assessment:

1. SOC 2 Type I: Granted to Monokera on June 27, 2025, this evaluation confirmed that our security policies, procedures, and control architecture were appropriately designed and implemented at a specific point in time. In other words, it verified that we had the right controls in place.
2. SOC 2 Type II: The newly obtained attestation represents the execution phase—an in-depth audit in which an independent firm evaluates, over several months, whether all security and compliance controls not only exist but also operate effectively and consistently.

The results confirm that Monokera maintains policies, processes, and systems aligned with leading international standards in cybersecurity, regulatory compliance, and risk management—ensuring the confidentiality, integrity, and availability of the information entrusted to us by our customers and partners.

Why this matters for our clients?

• Verified Trust: We are demonstrating that our systems not only meet the required standards, but their effective operation has been proven over an extended period by an independent firm
• Accelerated Compliance: This report accelerates due-diligence processes, vendor reviews, and security assessments by providing formal evidence of our security-first culture.

For more details on our reports, certifications, controls, and information security policies, please visit trustcenter.monokera.com.