- Proton has announced its successful ending of a SOC2 Type II -Revision
- The strict revision verifies the proper implementation of security checks
- It is further proof that Proton can help companies meet the compliance
Proton AG has announced its end of another independent revision, which further demonstrates the severity it requires data security and users’ privacy.
Completed in July 2025, this is the first time that the provider of Proton’s privacy tools, which includes one of the best VPN and encrypted E -mail services on the market, has obtained SOC2 Type II Attestigation. However, this adds the growing number of third -party audits that the Swiss company has undergone.
The external audit conducted by Schellman included interviews and document checks to determine that Proton’s internal security checks are implemented correctly.
What is SOC2 Type II and why does it matter?
SOC2 Type II is a recognized compliance standard that evaluates how a company handles customer data.
More than checking that a company has specific security checks in place, it assesses their efficiency over a longer period, typically several months.
The independent third -party audit was carried out by Schellman, an audit firm that specializes in certification and certification services.
Proton has completed a SOC 2 Type II certificate. It adds our ISO 27001 certification and compliance with GDPR and the Swiss dpa.What does it mean, and why should you be interested? Let’s break down it ๐๐งต1/6July 22, 2025
Completion of SOC2 Type II revision shows that proton not only has strong security measures in place but follow them consistently.
“Protons SOC 2 Type II certificate proves that our security is not only technical – it is operational,” said Security Leader in Proton, Patricia Egger, in a statement on Proton’s Website.
The news signals for companies that Proton has strong internal controls for data security. It also helps them meet their own compliance requirements, such as GDPR, and confidence that sensitive data is handled responsibly.
A growing evidence of protons security
An increasing number of technology companies submit their systems to independent audits to provide transparency and nurtured trust.
With the SOC2 Type II revision, Proton has gone one step further than most. It joins the Nord Security, the company behind NordVPN, whose Nordpass and Nordlayer products have passed the same audit.
Proton’s recent revision increases a growing evidence of its commitment to data security and privacy for its users. It follows Proton, which receives its ISO 27001 certification in May 2024, an international standard for information security management.
Proton VPN also had its policy, which was not log, independently revised by Securitum in July 2024. Independent revisions of non -log policies are more common, as are surfshars and ExpressVPN both recently have their requirements that have no logging, also verified.
