At HeroCoders, we've always placed a high priority on security, privacy, and trust.
As a demonstration of our on-going commitment to protecting customer data, we’re delighted to share that we achieved SOC2 Type I compliance in August 2024.
Why We Pursued SOC2 Compliance
SOC2 had been on our radar (and roadmap) for some time. We know that security is a top priority when selecting apps. As we grew, and our products like Checklist for Jira became essential tools for more and more enterprise customers, we saw an increasing need to meet higher security and privacy standards.
Many of you asked us to fill out detailed security surveys or even requested SOC2 or ISO certifications before you could fully integrate our tools into your operations. At the same time Atlassian began to focus more heavily on enterprise solutions, especially on the cloud. For us, a cloud-first company, the path forward was clear: to make our tools enterprise-ready and ensure we continue to meet your needs, we needed to take our security practices to the next level.
So when Atlassian reached out and invited us to participate in a program to fast track SOC2 compliance using Vanta, we were keen to join.
What the Process Looked Like
We can’t say the process was painless. It took time, investment, and learning, but it was worth it to ensure your data and your business are fully protected.
As a small company, we had some knowledge and procedures that were used, but not necessarily documented. So along with listing our controls, and doing penetration tests, we were also formalizing policies. The audit process itself was thorough, taking three months to complete after our initial preparation.
Now that we’ve achieved SOC2 certification, we’re committed to maintaining those high standards moving forward.
How This Helps You
SOC2 compliance isn’t just a badge of honour for us - it’s a promise to you. We’re investing heavily in making sure our operations remain secure and compliant.
By achieving SOC2 compliance, we’re also making your life easier by ensuring we meet the industry’s best practices. Security questionnaires, compliance forms and detailed back-and-forth conversations are time-consuming and cumbersome. With SOC2 compliance, we’re removing that burden. Now, you can trust that we’ve been independently audited and certified. The next time you need to confirm our security measures, simply access our SOC2 report via our Trust Center.
It’s also worth noting that SOC2 compliance is only one of many steps we are taking to ensure our customers' data is secure. We also employ a full-time Privacy Manager and receive ongoing GDPR compliance support from an external advisor.
As we continue to follow Atlassian’s lead and prioritize cloud and enterprise strategies, our SOC2 certification ensures that we’re prepared to meet the highest standards of security and privacy for all our customers. Whether you're working in highly regulated industries or handling sensitive client information, you can trust us to have the right safeguards in place. We’re excited to continue this journey with you, providing the enterprise-ready tools you rely on with the trust and security you expect.
The HeroCoders SOC2 audit was conducted by Prescient Security and is available upon request via our Trust Center. Please contact our support team with any questions or concerns.