Strengthening Akuity’s Security Foundation: SOC 2 Type II Renewal and ISO 27001 Certification
Ken Cochrane
From day one, Akuity has been committed to upholding the highest standards of information security for customers around the world. We continuously invest in our security and compliance programs to help organizations meet both local and regional regulatory requirements.
Since earning our SOC 2 certification in 2023 we’ve continued to strengthen our security posture.
This is why, we’re excited to share two important security milestones that reinforce our security-first culture:
Akuity has achieved the ISO 27001 certification
Akuity has successfully renewed their SOC 2 Type II report
Together, these milestones reflect how we build and operate Akuity, and why customers trust us with critical infrastructure.
Understanding Akuity’s Security Certifications
ISO 27001: Information Security Management
ISO 27001 is an international standard for establishing, implementing, and maintaining an Information Security Management System (ISMS). It focuses on how an organization systematically identifies, assesses, and manages information security risks across people, processes, and technology.
SOC 2 Type II: Trust Services Criteria
SOC 2 Type II is an independent audit report that evaluates how effectively a company’s security and privacy controls operate over time, based on the AICPA’s Trust Services Criteria. It assesses controls related to Security (mandatory) and, where applicable, Availability, Confidentiality, Processing Integrity, and Privacy.
Why we pursued ISO 27001
While SOC 2 is widely recognized in the US, ISO 27001 is often the preferred security framework for European organizations. As we’ve expanded our conversations with customers in Europe - and with our launch of a dedicated EU Data Region - ISO 27001 consistently came up as an expectation, sometimes a hard requirement.
At the same time, existing customers requested stronger alignment with international security standards as their compliance needs evolved.
Pursuing ISO 27001 was a natural next step in our broader European expansion and long-term security strategy.
What ISO 27001 means at Akuity
For Akuity
ISO 27001 isn’t a checkbox exercise. It requires a structured, auditable approach to risk management across the organization.
For Akuity, certifications reflects how we already operate:
Clear ownership of security and risk management
Documented and enforced security controls
Continuous review and improvement of our processes
Security and compliance embedded into engineering workflows
Combined with our SOC 2 Type II renewal, this provides independent validation that our controls are not only well-designed but also operating effectively over time.
For Our Customers
For customers, these certifications mean:
Increased confidence in how we protect your data
Alignment with widely recognized security frameworks
Easier vendor reviews and security assessments
A security posture that scales as your own compliance needs grow
At Akuity, security and compliance are foundational principles, embedded into every stage of how we design, build, and operate our platform.
Looking Ahead
These milestones support our continued growth, especially in Europe, and set the foundation for future investments in privacy, security, and compliance.
To obtain copies of our reports or delve deeper into our security program, please visit our Security and Compliance page or our Trust Center. Our team is also readily available to provide more detailed information.
👉 Contact our team to learn more
Come talk to us in Europe
We’ll be at DevOps Live London on March 4–5, followed by KubeCon EU + CloudNativeCon Europe March 23–26, 2026, in Amsterdam. We’d love to talk more about the new EU region and how Akuity can support your team at either event.
If you’re attending, schedule time to meet the team, ask questions, and see how the Akuity Platform works in an EU-resident environment.
