At Schema App, data security and privacy are at the core of how we operate. We’re passionate about helping enterprise companies prepare for and thrive in the era of AI search. In the same way we’re committed to innovation, we’re equally dedicated to upholding the highest standards of security across our services. Our customers trust us to manage, process, and store structured data that impacts their visibility in search—and that trust drives everything we do.
Achieving SOC 2 Type II compliance is an important milestone that demonstrates our continued commitment to maintaining the highest standards of data protection and operational integrity.
What is SOC 2 Type II Compliance?
SOC 2 (System and Organization Controls 2) is an independent audit framework developed by the American Institute of Certified Public Accountants (AICPA). It evaluates a company’s controls for security, availability, processing integrity, confidentiality, and privacy.
A SOC 2 Type I report assesses the design of these controls at a specific point in time, while a SOC 2 Type II report evaluates how well those controls operate over an extended period—typically six to twelve months.
Achieving Type II compliance confirms that Schema App not only has the right systems in place but that we consistently maintain them in practice.
Our Path to SOC 2 Compliance
Achieving SOC 2 Type II compliance required coordination across teams and a company-wide commitment to information security best practices. We engaged Johanson Group LLP to perform the independent audit and verify that our controls met the SOC 2 standards. We also used Vanta to streamline evidence collection and automate control monitoring, which made managing the process straightforward and reduced overhead for our team.
Our compliance journey included:
- Formalizing security policies
- Strengthening monitoring and access controls
- Completing continuous risk assessments to ensure we’re always protecting our customers’ data
The audit confirmed that our systems, policies, and processes are effectively designed and consistently applied.
What This Means for Our Customers
Our customers operate in industries where compliance and data protection are critical. SOC 2 Type II compliance provides additional assurance that Schema App’s solutions and infrastructure meet rigorous security and privacy standards. This certification reinforces our commitment to safeguarding customer data while continuing to deliver innovation and reliability in our products.
As a platform built to create meaningful connections in data so organizations can be understood, this milestone ensures those connections are built on a secure, trusted, and independently verified foundation.”
– Mark van Berkel, Schema App Co-Founder & CTO
What’s Next
Security and compliance are ongoing commitments. Schema App will continue performing regular security reviews, risk assessments, and continuous monitoring to uphold the standards validated through the SOC 2 Type II audit.
We’re proud of this achievement and grateful to our team and partners who made it possible. Most importantly, we’re proud to continue earning our customers’ trust every day.
Mark van Berkel is the Chief Technology Officer and Co-founder of Schema App. A veteran in semantic technologies, Mark has a Master of Engineering – Industrial Information Engineering from the University of Toronto, where he helped build a semantic technology application for SAP Research Labs. Today, he dedicates his time to developing products and solutions that allow enterprise teams to leverage Schema Markup to boost their AI strategy and drive results.