Trust is the foundation of community. Communities rely on the free flow and transfer of information to foster learning, growth, and mutual respect. If members don’t trust their personal data and information is safe, they may hesitate to participate in community activities or abandon the community entirely.
Community builders must intentionally build trust, and continuously re-earn trust over time to create the conditions for the community to flourish. This can look like establishing community moderation guidelines, mandating secure data access practices like single sign-on (SSO), and achieving compliance standards like SOC 2.
To proactively build trust with our community of users, Orbit is pleased to announce we meet SOC 2 security compliance. Orbit’s control environment is tracked and maintained with the help of our partners at Kintent.
SOC 2 is a transparent way to verify that Orbit is continuously taking steps to prevent the spread of ransomware, data breaches, and other security threats.
As part of this certification, Orbit underwent a SOC 2 Type 1 attestation audit and is subsequently starting a Type 2 audit to prove ongoing compliance over the next year to ensure we are staying ahead of the latest security requirements.
🔐 Orbit users can request our SOC 2 audit reports at any time.
SOC 2 certifies organizations across five principles of trust: security, availability, confidentiality, processing integrity, and privacy.
While these terms are susceptible to hype and jargon, they do have very real meanings and distinctions. Let’s break them down in a clear and concise way:
This SOC 2 compliance means Orbit satisfies these criteria, having put in place the system and organization controls necessary to ensure our customers' needs.
As a community builder, it’s important to make sure you are always striving to improve member security–from user logins and conversations to the community data itself.
Orbit offers features and capabilities that make it easier to protect member information and build trust within your community. Here are a few of them:
Permission management empowers you to securely share community data and reporting with your team. You’re in control of who has access to community data by adding, removing, or assigning a member as an owner of a workspace.
Ensure compliance with user data standards. If a user requests that you do not capture their data, you can block member or activity creation for those specific usernames and email addresses. You can also use this feature to prevent spam accounts or irrelevant data from muddying community data.
Stay on top of the latest security updates with the Orbit Audit Log. Under "Settings", we display a running list of changes made to your workspace, including security updates, workspace changes, integrations, and more.
Streamline the log-in experience, reduce password fatigue, and enhance security at the same time. SSO makes it fast to log in to Orbit while making it easier to track user activity across profiles and minimize Shadow IT.
Protect your user identity, prevent password fraud and improve ease of signing in. Get notified and verify every time you log in. If someone attempts to use your account without your knowledge, you’ll be notified right away. Verify your identity from multiple sources like phone calls, text messages, and personal email.
Even with these measures and certifications in place, the responsibility for building trust within the community also lies with you, our platform users.
Here are some practices you can adopt when managing and interacting with your community through Orbit.
To learn more about SOC 2 compliance and what it means for you, we’ve compiled a list of resources for you:
Sign up for Orbit for free to learn more about the power of community.