Hey @supportdept, congrats on getting SOC2 certified! I’ve gone ahead with the process of getting my app SOC2 certified and a provider is helping me out.
Two things I def need to proceed are:
Anyway to get these publically shared in this thread? Guessing more Bubble apps will be trying to get SOC2 certified now and it will help to have these on hand.
I spoke with sales about this. It sounds like all of this information is available once you’re on one of their Enterprise Plans. It involves signing an NDA, so I doubt that it will be publically shared.
Totally! Can you share what you’ve found for getting a Bubble app SOC2 certified? You mentioned a provider is helping you out…
Really? That’s wack. AWS/Google Cloud etc. have their SOC 2 reports public. Guessing Bubble wants you to pay $1000s/month to get on their Enterprise plan which isn’t feasible for us yet.
For your question, I’m using a company called Sprinto that helps out with this. They mentioned before I signed on that another Bubble company had recently gotten SOC2 certified through them so it’s possible. Going to ping them to try to get that doc from the other customer.
Enterprise plan? I thought they only had this on dedicated plans which is a couple $1000’s more than that. I’m on the same SOC2 certification process but wasn’t aware of this. Let us know if you are able to get Bubble’s SOC2 certification
As an update, Bubble sent me the SOC2 report after I signed an NDA.
Hey Rod! Did they send you their SOC2 report without being on an Enterprise plan?
Also, how was your time Sprinto? Assuming this al all done now? We’re about to go down a similar path…Thanks for your input
Yup I just had to sign an NDA and Bubble sent it over no problem.
For Sprinto, all great! Just got my Type 1 certification through an affordable auditor they recommended. Loved my SDR too. Can email austin@getsprinto.com if interested in getting started and say Rod sent you.
Hi Rod, could you DM me the email of who shared you the SOC2 report? I was contacted by a Bubble CSM but shared me the SOC3 report and will not answer my SOC2 request.
Cadyn Dering cadyn.dering@bubble.io
This topic was automatically closed after 70 days. New replies are no longer allowed.
