
When to have Privacy Assessed within a SOC 2®*
A common reason that a service organization may request that the privacy trust service category be covered in its SOC 2®* examination, when it may not really be necessary, is related to a misconception of what privacy within the context of the SOC 2® examination actually covers.