Home | Company | NextLabs Press

NextLabs Achieves SOC 2 Type II Certification for Zero Trust Data Security

July 29, 2024

NextLabs Achieves SOC 2 Type II Certification for Zero Trust Data Security

Rigorous audit highlights the maturity and robustness of NextLabs’ policy engine and DRM platform

San Mateo, Calif. – July 29, 2024- NextLabs is proud to announce the successful completion of the SOC 2 Type II audit for its Zero Trust policy engine (CloudAz) and Digital Rights Management (SkyDRM) platform. This certification, governed by the American Institute of CPAs (AICPA), is a recognized standard for data security and management. NextLabs is the first vendor to achieve this certification for its Zero Trust based policy engine, demonstrating the product’s maturity in data-centric security.

The SOC 2 Type II audit reports on controls relevant to security, availability, processing integrity, confidentiality, and privacy. Receiving a “clean” audit opinion highlights that NextLabs Zero Trust Data Security exceeds the stringent standards for internal controls and data safeguards in these areas. NextLabs has recently introduced enhancements to strengthen the robustness of its policy engine and DRM platform, which include the following benefits:

CloudAz Policy Engine:

  • Enhanced Cybersecurity: Utilizes dynamic authorization and attribute-based access control (ABAC) to evaluate access requests in real time, controlling access and protecting data whether on-premises or in the cloud.
  • Strong Policy Governance: Ensures business continuity and enhances risk management through automated controls and robust policy governance to prevent breaches.
  • Zero Code and OOTB integration supporting hundreds of applications: Accelerates time to value and avoids costly customization, enabling rapid response to changes in business and regulatory requirements.

SkyDRM:

  • Secure Collaboration: Seamlessly integrates with applications to protect sensitive data during collaboration, enforcing fine-grained access and usage control policies.
  • Cross Enterprise Enforcement: Supports federated identity with multi-domain policies to enforce secure data sharing across borders and multi-tier supply chains.
  • Preventive Controls: Automates data protection and simplifies access management to prevent unauthorized access and data leakage.

“NextLabs serves over 100 of the largest government agencies and Fortune 1000 companies with stringent data security requirements,” said Keng Lim, CEO of NextLabs. “We strive to improve upon our 98% customer satisfaction and this certification demonstrates our commitment to high standards of security, confidentiality and availability.”

For more information and to request a copy of NextLabs SOC 2 Type II report, visit our Security, Privacy, and Compliance page.

###