SOC 1 and SOC 2 Compliance

OverviewBrex’s compliance


Service Organization Control 2 (SOC 2) is viewed as a robust audit of a business that outlines current approaches to security and security controls. This provides customers and partners with more confidence in business operations. There are two types of SOC 2: Type 1 and Type 2.

  • SOC 2 Type 1: Describes the systems of a vendor (Brex) and tackles whether it is capable of meeting relevant trust principles as of a specified date.
  • SOC 2 Type 2: Details the operational effectiveness of the said systems throughout a disclosed period of time.

Brex’s compliance

Brex is currently SOC 2 Type 2 compliant. Our SOC 2 security package contains a Type 2 report, which Brex Support can provide to you upon request. Note: A SOC 2 Type 1 report is not included in our security package.

Was this article helpful?