SOC 2
SOC 2 Type II
Trust Services Criteria covering security, availability, processing integrity, confidentiality, and privacy.
Frameworks
Veritra maintains unified control mappings across the frameworks your customers, regulators, and board care about — so a single piece of evidence satisfies many tests at once.
SOC 2 Type II
Trust Services Criteria covering security, availability, processing integrity, confidentiality, and privacy.
ISO/IEC 27001:2022
International standard for information security management systems with Annex A controls.
HIPAA Security Rule
Administrative, physical, and technical safeguards for protected health information.
GDPR Readiness
European data protection regulation — lawful basis, DSARs, processor agreements, and breach notification.
PCI DSS v4.0
Payment Card Industry Data Security Standard for organizations handling cardholder data.
ISO/IEC 42001 (AI)
Management system for the responsible development and use of AI systems.
NIST Cybersecurity Framework 2.0
Identify, Protect, Detect, Respond, Recover, Govern — the new function-based model.
CCPA / CPRA
Consumer rights, opt-outs, and data minimization for California residents.
Unified Mapping
Implementing access revocation once gives you credit against SOC 2 CC6.1, ISO 27001 A.9.2.6, HIPAA §164.308(a)(3), and GDPR Art. 32 — simultaneously.