SOC 2 Type II

This topic describes how Snowflake supports customers with SOC 2 compliance requirements.

Understanding SOC 2 compliance requirements

The SOC (System and Organization Controls) 2 Type II report is an independent auditor’s attestation of the design and operating effectiveness of the security, availability, and confidentiality controls that Snowflake has had in place during the report’s coverage period. The framework was created by the American Institute of Certified Public Accountants (AICPA). The control criteria for a SOC 2 Type II certification are based on the AICPA Trust Service Principles.