Trust & Security
Avannis Trust Center
We take the security and confidentiality of your data seriously. Our SOC 2 Type II report is available to clients and qualified prospects under a mutual non-disclosure agreement.
SOC 2 Type II
Independent Security Audit
Our SOC 2 Type II report was conducted by Richey May, an independent audit firm, and evaluates the design and operating effectiveness of security controls across Avannis' Customer Experience Platform.
- Auditor
- Richey May, Englewood CO
- Audit Period
- September 1 – November 30, 2025
- Report Date
- May 1, 2026
- Criteria
- Security & Confidentiality (AICPA TSP 100)
- Infrastructure
- Amazon Web Services (AWS)
Coverage
What the Audit Assessed
- Control Environment — Organizational policies, ethical standards, and management oversight
- Logical & Physical Access — Who has access to systems and data, and how that access is managed and monitored
- System Operations — Monitoring, alerting, and incident response procedures
- Change Management — How software changes are reviewed and approved before deployment to production
- Risk Assessment & Mitigation — How risks to the platform are identified, assessed, and addressed
- Communication & Information — How security-relevant information is captured and communicated across the organization
- Confidentiality — Controls protecting client data from unauthorized disclosure
How It Works
Requesting the Report
1
Submit the request form
Provide your contact information so our team can verify your request.
2
Review and sign the NDA
Read and electronically sign our mutual non-disclosure agreement.
3
Receive the report
Our team will review your request and deliver the report within 1 business day.