SOC 2
Cendance is currently undergoing a SOC 2 audit and is working toward full compliance soon.
What is SOC 2?
SOC 2 is an independent audit framework for evaluating how a service organization protects customer data. It focuses on trust service criteria such as security, availability, processing integrity, confidentiality, and privacy.
Current audit status
Cendance is actively undergoing a SOC 2 audit. We are aligning our product, infrastructure, and operating practices with the controls required to complete the audit and become fully compliant soon.
Trust service criteria
Our SOC 2 work is centered on the controls that matter most to organizations evaluating Cendance for sensitive operational workflows.
- Security controls for protecting customer data
- Availability practices for dependable access
- Confidentiality controls for sensitive records
- Privacy-aware handling of personal information
How we are preparing
Cendance's audit preparation includes reviewing access controls, change management, monitoring, vendor practices, and evidence collection across the systems that support the product.
- Least-privilege access and review practices
- Change management for production systems
- Operational monitoring and evidence collection
- Security review of sensitive product workflows
Protecting customer data
Cendance is built around authenticated access, organization boundaries, and permission-aware workflows so churches can manage people, finance, media, and operations data with stronger internal controls.
SOC 2 resources and timelines
For audit timelines, procurement questions, or current security materials, email us or use the contact form.
Your sunday prep in one place.
Try free for 30 days. Bring one campus, bring all of them. Migration from your current stack is included on Vine and Olive.