.svg)
%20(1).png){kind=small}
We are proud to share that Asseta has successfully completed our SOC 2 Type II audit, a milestone that reflects our deep commitment to the security, privacy, and trust of every family office we serve.
Over the course of the audit period, no significant security incidents occurred and no exceptions were noted across every control tested.
Family offices manage some of the most sensitive financial and personal data in the world. When you trust Asseta with your wealth, your entities, and your family's financial life, you deserve more than a promise. You deserve proof. That's exactly what SOC 2 Type II provides.
Conducted by Johanson Group LLP, an independent third-party auditor, our SOC 2 Type II examination assessed the design and operating effectiveness of our security controls over a full year. The result speaks for itself.
Type II: a more rigorous standard
A SOC 2 Type I audit evaluates whether controls are well-designed at a single point in time. Type II goes further: it examines whether those controls actually operated effectively, consistently, over an extended period. For a platform entrusted with the wealth management and accounting of family offices, anything less would not be sufficient.
Our audit covered the full AICPA Security trust services criteria, spanning access controls, change management, incident response, vendor oversight, and risk assessment. Every control category came back clean.
"Our management team must balance two competing interests: continuing to grow in a cutting-edge technology space while remaining excellent and conservative stewards of the highly sensitive data and workflows our customers entrust to us. SOC 2 Type II is how we hold ourselves accountable to that second half."
Dean Palmiter, Co-founder & CEO, Asseta
Security built into every layer
Why this sets Asseta apart
SOC 2 Type II is not a standard that most early-stage software companies pursue. It requires significant investment in people, process, and infrastructure, and a willingness to be held accountable by an independent auditor over an extended period. For a platform purpose-built for family offices, we believe it is not optional. Family offices are entrusted with generational wealth, complex entity structures, and deeply private financial information. The families and institutions that rely on Asseta deserve a vendor they can verify, not just trust. Achieving SOC 2 Type II at this stage of our growth is a deliberate signal: security is not a feature we will add later. It is foundational to everything we build.
Our commitment going forward
Achieving SOC 2 Type II certification is not a finish line. It is an annual commitment and one we take seriously. We utilize Vanta for continuous security and compliance monitoring, ensuring our controls remain effective every day of the year, not only during audit periods. Our risk register is reviewed and updated on an annual basis, and our incident response procedures are documented, maintained, and ready to be enacted at any time.
As Asseta continues to grow and serve an expanding community of family offices, our obligation to protect the wealth, data, and trust placed in us grows with it. We will continue to hold ourselves to the highest standards of security, and we look forward to sharing future milestones with the clients and partners who make this work meaningful.
%20(1).png)
.png)
.png)
