We are a small shop and being asked for SOC2 compliance.
Is anyone here self hosting a significant part of their infra and compliant?
What challenges did you face doing it?
We are a small shop and being asked for SOC2 compliance.
Is anyone here self hosting a significant part of their infra and compliant?
What challenges did you face doing it?
I don’t think you should ever need to be SOC 2 compliant for self-hosting. If you’re hosting commercially, that’s not in scope for self-hosting. In that case I would resell existing SOC 2-compliant hosting.