authors

At Tekmetric, we understand that data security is more than just a priority—it's a responsibility. That’s why we are excited to announce that Tekmetric is now ISO/IEC 27001 certified! Combined with our SOC 2 Type II certification, this achievement underscores our commitment to keeping customer and partner data safe and maintaining systems that operate at the highest standards. 

What is ISO/IEC 27001?

ISO/IEC 27001 is the internationally recognized standard for Information Security Management Systems (ISMS). It represents a comprehensive framework for managing and protecting an organization’s information assets, ensuring confidentiality, integrity, and availability of data.

To obtain this certification, Tekmetric went through rigorous audits and a thorough examination of security protocols, risk management practices, and data protection measures.

As we continue to innovate shop management solutions to best support our customers, achieving this certification reinforces that our platform and internal workflows protect the highly sensitive data customers and partners trust us with. 

What This Means for Tekmetric Customers

For Tekmetric customers, achieving ISO/IEC 27001 certification means you can trust that we adhere to the highest standards for information security. 

• Enhanced Data Security & Trust: Our certification guarantees that Tekmetric has stringent security measures in place to safeguard sensitive data, including customer information, financial records, and business data. 
• Reduced Risk of Data Breaches & Security Incidents: By adopting a proactive approach to risk management, Tekmetric minimizes the likelihood of security breaches and disruptions
• Compliance & Regulatory Alignment: Our ISO/IEC 27001 certification helps customers demonstrate compliance with data protection regulations, such as GDPR and CCPA. 

This certification reinforces our commitment to safeguarding your data, providing you with peace of mind and confidence in our Shop Management platform. To learn more about all our certifications and our commitment to security, visit our Trust Center.

Considered the “gold standard” in security compliance, this certification is awarded in accordance with the American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18.

As one of the first auto repair shop management systems to achieve SOC 2 compliance, Tekmetric is well-positioned to continue safeguarding sensitive information for both auto repair shops and their valued customers.

As a digital solution for auto repair shops, Tekmetric understands the importance of maintaining the highest security possible.  Not only do we want to ensure that our customers receive full transparency anytime their vehicle is in the shop, but we also understand the value of keeping customer data protected and secure. 

Last year, Tekmetric took our data security measures to the next level by achieving SOC 2 Type I compliance – and this year, we’ve stepped up our game to achieve SOC 2 Type II compliance. By earning both SOC 2 Type I and Type II compliances, we aim to continue promoting trust, transparency and security throughout the industry. 

As a company that prioritizes innovative, reliable solutions, Tekmetric is proud to be among the first auto repair shop management solutions to receive SOC 2 Type I and II compliance. These certifications are awarded in accordance with the American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations (SSAE 18). 

What is SOC 2 Type II Compliance? 

SOC 2 Type II compliance is awarded when a system meets five principles:  

• Security. SOC 2 Type II protects the system against any unauthorized access, ensuring customer data is only accessible to approved parties. 
• Availability. This allows for stronger capabilities in monitoring performance, disaster recovery and handling security incidents. For example, Tekmetric has many data centers across the country to promote better disaster recovery. If one center goes down, the others have backup data available, so shops can access their information without missing a beat. 
• Processing Integrity. This quality revolves around quality assurance and process monitoring. The information you process through the system must be complete, authorized and accurate. 
• Confidentiality. We recognize that our partner shops obtain many types of personal data from vehicle owners. SOC 2 Type II compliance assures you and the vehicle owners that visit your shop that their data remains confidential within your system. 
• Privacy. Above all, we want to make sure data is specifically used for its intended purpose. People value dependability, and this certification helps keep your shop’s data private according to the standards specified by the American Institute of Certified Public Accountants (AICPA) and the Canadian Institute of Chartered Accountants (CICA). 

What is SOC 2 Type I vs. Type II?

• Type I: Describes how security and compliance controls are “designed” based on a specific point in time. For example as of March 31st, the organization conducts background checks and has job descriptions for roles and responsibilities.
• Type II: Describes the “design and operating effectiveness over a period of time (audit period),” typically 6-12 months. This assessment shows the SOC 2 control implementation and operating effectiveness over that time period. 

What Does It Mean for My Shop? 

Security is a big concern in the modern auto repair industry – and with good reason. No one wants their data available to the whole world. With SOC 2 Type II compliance, we are able to keep any information that you put into Tekmetric secure, from your shop’s data to your customers’ information. 

This happens without you needing to lift a finger. No need to track the last time you backed up your data or review who has access to your system! You can also assure your customers that their sensitive information is safe when they give it to you. They – and you – can sleep easier knowing the data is protected, and your shop management system meets top-tier industry standards to keep it that way.  

Protecting Data in the Long-Term

At Tekmetric, we’re committed to driving positive change in the auto repair industry by promoting accessibility and transparency for both  partner shops and the public. Achieving SOC 2 Type II compliance demonstrates that Tekmetric not only meets, but surpasses industry standards. We are committed to consistently measuring up on behalf of our customers, and data security is no exception to that rule.

By combining our leading shop management solution with top-class data security, we can better support you and your shop in protecting your data and your customers’ data – all without slowing your team down. Here’s to transparency, trust and reliability!