Skipify Achieves AICPA SOC 2 Type II Certification

At the center of Skipify's journey to provide shoppers with the best, most seamless, and secure purchase experience is our commitment to data privacy and security. We uphold the highest standards in safeguarding all data that flows through our payment infrastructure and across all of our product portfolios that simplify checkout. That’s why we’re proud to share that Skipify has now achieved the AICPA SOC 2 Type II certification, another milestone in our security and compliance validations from industry authorities.

Why SOC 2 Matters

Developed by the American Institute of Certified Public Accountants (AICPA), SOC 2 is a universal security standard for organizational systems. Conducted by an independent third party, this comprehensive audit examines every aspect of our system, from data encryption and storage to access controls and monitoring. The certification process involves a rigorous audit of security, availability, processing integrity, confidentiality, and privacy. Achieving SOC 2 Type II certification means that Skipify has met the highest standards for maintaining robust security protocols and protecting our users' sensitive information, ensuring that our platform is secure and reliable.

“Earning the SOC 2 Type II certification is a proud achievement for Skipify and a clear demonstration of our relentless focus on data security and privacy. This certification not only validates the robust security measures we have in place but also reinforces our commitment to providing a trusted platform for our merchants, shoppers, and financial partners.” 

– Michael Kazarian, CTO at Skipify

What Skipify’s SOC 2 Certification Means for Our Customers and Partners 

For merchants, this provides further assurance that all Skipify transactions are governed by air-gapped level security as they scale in terms of GMV volumes and customer enrollments. For shoppers, they can rest assured that their sensitive data, such as Personal Identifiable Information (PII) and payment credentials, will be encrypted and protected, during every transaction no matter where they shop or what card(s) they use. 

For our financial institution partners, being SOC 2-compliant means Skipify’s API integrations are equipped with a set of rigorous controls for card member authentication, encryption, incident management, and ongoing security monitoring. 

Looking Ahead

At Skipify, we’re building towards a future where people can shop and transact anywhere with just their digital identity, which is why we are continuously holding ourselves to the highest security standards. Achieving SOC 2 Type II certification is just one step in our ongoing commitment to consumer trust, and we will continue to invest in processes and technologies that enhance sensitive data protection. These efforts also include ongoing collaboration and best practices sharing with our partners, who represent the largest and most influential card networks and issuers in the world. Our vision is to help raise the bar for the industry as a whole when it comes to security, card authorization rate, and customer satisfaction.