At OneClick Code, we take security seriously. We use layered, industry‑standard controls across our people, products, and platform to protect your data.

How we protect your data

Encryption everywhere: Data is encrypted in transit and at rest.
Strong access controls: Unique accounts with least‑privilege access; SSO/MFA available.
Secure development: Peer review, automated checks, and proactive vulnerability management.
Hardened platform: Trusted cloud infrastructure, network isolation, and continuous monitoring/alerting.
Responsible data handling: We retain only what’s needed, honor deletion requests, and maintain encrypted backups.
Prepared to respond: Documented incident response and continuity plans; we notify customers as appropriate.
People & partners: Confidentiality commitments, managed devices, and vetted service providers.

We are proud to have successfully completed our SOC 2 Type II audit, reinforcing our commitment to maintaining the highest standards of security. This achievement reflects the strength of our internal controls and the disciplined approach we take to protecting customer data and earning long-term trust.

Our controls were independently evaluated by a third-party auditor against the AICPA Trust Services Criteria for the Period of Examination: October 23, 2025 through January 23, 2026. This assessment validates that our security controls are properly designed and operating effectively over time.

Due to the sensitive nature of the SOC 2 report, which includes detailed information about our systems, controls, and infrastructure, we do not distribute it publicly. Access is provided only to enterprise customers or organizations that have executed a non-disclosure agreement (NDA).

We routinely assess our controls and engage independent reviewers. If you need deeper details for due diligence, we can share summaries under NDA.

Questions? Reach us at security@oneclickcode.com

Last updated: March 2026.

Security at OneClick Code

SOC 2 Type II Compliance