ediverse Explore the platform

Spotlight PEPPOL BIS Billing 3.0 The EU e-invoicing mandate is here — France Sept 2026, Belgium Jan 2026, Germany 2025.

SOC 2 Trust Services

AICPA TSC SOC 2 Security + 4 optional criteria.

Definition

SOC 2 TSC structure: Common Criteria CC1 Control Environment, CC2 Communication, CC3 Risk Assessment, CC4 Monitoring, CC5 Control Activities, CC6 Logical/Physical Access, CC7 System Operations, CC8 Change Management, CC9 Risk Mitigation. Additional criteria: Availability A, Processing Integrity PI, Confidentiality C, Privacy P. Audit by CPA firms (Deloitte, EY, PwC, KPMG, Grant Thornton, A-LIGN, Schellman).

Origin

AICPA, first framework 2010, TSC revision 2017, update 2022.

Usage

Quasi-mandatory for any B2B SaaS selling to US enterprise. Competes with ISO 27001 (international, but more formal).

Related terms

  • SOC 2 — fiche socle.
  • ISO 27001 — standard concurrent international.
  • AICPA — organisme parent.

Last updated: May 18, 2026