Yes! Balsamiq is SOC 2 compliant
That means the way we store, manage, and protect your data meets rigorous standards set by the AICPA (American Institute of Certified Public Accountants). The SOC 2 framework evaluates how well a company upholds controls related to security, availability, and confidentiality—especially for cloud-based services like Balsamiq.
Achieving SOC 2 compliance is more than just a badge. It’s a reflection of our long-standing commitment to earning your trust by safeguarding your data with care and diligence.
What this means for you
If you're part of a lean team making decisions about tools, compliance, or vendor security, you can rest easy knowing:
- Our systems are designed with security and reliability in mind.
- Your data is handled with strict confidentiality.
- We’ve undergone an independent audit to validate our internal processes.
A milestone worth celebrating
At Balsamiq, customer trust is everything. SOC 2 compliance helps us demonstrate formally that we take your security seriously, and always will.
We partnered with Advantage Partners and Vanta to guide us through the process and ensure everything met the highest standards. Their support helped us achieve compliance without slowing down the work that matters most: supporting you and your team.
Want to dig deeper?
You can find a link to our SOC 2 document on our Information Security page.