August 4, 2022
Following Continual achieving SOC 2 Type 1 compliance in January, we’re proud to announce we are now SOC 2 Type 2 compliant. This milestone demonstrates our ongoing commitment to helping our customers protect their data – and their customer’s data – as they build and grow their operational AI platforms.
It’s a hard reality for many software projects that security is added late in their development cycle as their market viability becomes clear. The Consortium for Information and Software Quality (CISQ) estimated the cost of operational software failures to the US economy in 2020 at $1.56 trillion, a 22% increase from 2018. Cybercrime, a core target of the SOC 2 standard, was the fastest-growing segment of this category.
It’s also the case that cloud-native data warehouses now lead the way in helping businesses collect, store, and grow their data. A robust data warehouse helps to keep a lid on the operational costs and administrative burden of rapidly-growing datasets and new sources of data.
We’ve designed Continual from the ground up with data security and governance in mind. We believe the future of enterprise AI must start with assuring customers that their data will be safe in the hands of the companies they trust.
Continual is a simple, powerful operational AI platform that connects directly to your data warehouse, whether it’s Snowflake, BigQuery, Redshift, or Databricks. There’s no need to disrupt your other compute tools or CI/CD processes that use your data warehouse; they just keep working. Continual can even leverage Modern Data Stack tools, such as dbt. Modify your existing dbt project files to use Continual and off you go.
With Continual you can provide predictive models with access only to the data you deem necessary for your model’s performance using your existing database user/role access control mechanisms.
Continual queries your warehouse data only. Your existing query logging and auditing mechanisms are all you need. You can then define your predictive models using a declarative workflow. There are no new software development processes to learn. Continual tracks all the changes you make to your configuration file, feature definitions, and models. Every event gets logged to an audit stream.
All data, including the predictions that Continual generates, stays in your data warehouse. Continual only accesses this data during its training and inference compute work. There are no ETL pipelines connected to third parties and no duplication of customer data. Your output predictions are written only to your warehouse, as secure and well-governed as the rest of your data.
Continual keeps your data warehouse at the center of your business. This is the future for modern data teams that operationalize business data, from traditional analytics to transformative AI use cases.
System and Organization Controls (SOC) Type 2 compliance is a rigorous auditing process that is defined and governed by the American Institute of Certified Public Accountants (AICPA). The process is conducted through independent auditors.
Continual uses Drata for continuous security and compliance monitoring. Drata provides a real-time assessment of our security controls and checks on our cloud infrastructure and internal business tools every day.
If you wish to see these or other compliance reports, including our Data Processing Agreement (DPA), or if you have further questions regarding our security architecture, please contact us or book a demo with a product expert.
See our Security page for details on the mechanisms we implement.
Continual is proud to announce that we are now SOC 2 Type 2 compliant.