In this article:
- Does Vimeo have a SOC 2 Type 2 Report?
- What is the primary purpose of this report?
- What is the scope of the Vimeo SOC 2 Type 2 report?
- What is the audit cycle for the Vimeo SOC 2 Type 2 report?
- How do I access the report?
Does Vimeo have a SOC 2 Type 2 Report?
Yes. Vimeo obtained a SOC 2 Type 2 Report in February, 2022. The report covers the period of January 2021 to December 2021. The next report is available upon request.
What is the primary purpose of this report?
The report provides an independent assessment of Vimeo’s security and privacy control environment. The assessment includes a description of the controls, the tests performed to assess them, the results of these tests, and an overall opinion on the design and operational effectiveness of the same.
What is the scope of the Vimeo SOC 2 Type 2 report?
Vimeo’s SOC 2 Type 2 Report covers the AICPA’s Trust Services Principle and Criteria of Security. The report also includes a mapping of the controls tested to ISO/IEC 27001:2013 Annex A / ISO/IEC 27002:2013, ISO/IEC 27017:2015, ISO/IEC 27018:2014, HIPAA security requirements, and FFIEC’s examination guidelines for GLBA Information Security.
What is the audit cycle for the Vimeo SOC 2 Type 2 report?
Audits are performed annually and a report covering January through December is issued in February or March.
How do I access the report?
If you are an Enterprise member, please reach out to your account manager to request a copy of the Vimeo SOC 2 Type 2 report. Due to the sensitive nature of the report, we are only able to share it Enterprise members. Contact our sales team to learn more.