AstrumU logo
March 13, 2023
AstrumU Receives Clean SOC 2 Type 2
March 13, 2023
AstrumU Receives Clean SOC 2 Type 2

AstrumU is proud to announce that we’ve received a clean SOC 2 Type 2 attestation report. This rigorous, independent assessment of our internal security controls serves as validation of our dedication and adherence to the highest standards for security, confidentiality, privacy, and processing integrity.

This is an important milestone but is in no way an end to our commitment to our customers and the security of their data. AstrumU views security as the foundation upon which our products are built and upon which trust with our customers is earned and maintained. 

AstrumU uses Drata’s automated platform to continuously monitor its internal security controls against the highest possible standards. With Drata, AstrumU has real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems.


At AstrumU, we understand the critical importance of proactively safeguarding data. We are constantly striving to use cutting-edge firewalling technology and compliance initiatives, in order to ensure maximum security throughout our operations: from development through cloud services. Should you require more information or have any queries related to cybersecurity practices, don't hesitate to get in touch with us directly.

/ Kaj Pedersen, CTO


Conducted by AARC-360, a nationally recognized CPA firm registered with the Public Company Accounting Oversight Board, this attestation report affirms that AstrumU’s information security practices, policies, procedures, and operations meet the rigorous SOC 2 Trust Service Criteria for security ,confidentiality, privacy, and processing integrity.

Developed by the AICPA, SOC 2 is an extensive auditing procedure that ensures that a company is handling customer data securely and in a manner that protects the organization as well as the privacy of its customers. SOC 2 is designed for service providers storing customer data in the cloud.

As more enterprises look to process sensitive and confidential business data with cloud-based services like AstrumU, it’s critical that they do so in a way that ensures their data will remain safe. Our customers carry this responsibility on their shoulders every single day, and it’s important that the vendors they select to process their data in the cloud approach that responsibility in the same way. 

We welcome all customers and prospects who are interested in discussing our commitment to security and reviewing our SOC compliance reports to contact us.


About AstrumU

AstrumU is on a mission to level the playing field between learning + working. By translating educational experiences and learned skills into in-demand career roles we can create economic mobility for the underserved and underrepresented communities. Using sophisticated AI/ML, AstrumU measures an individuals skills, maps to in-demand job roles and recommends possible upskilling opportunities.

About Drata

Drata is the world's most advanced security and compliance automation platform with the mission to help businesses earn and keep the trust of their users, customers, partners, and prospects. With Drata, thousands of companies streamline over 10 compliance frameworks—such as SOC 2, ISO 27001, GDPR, and more—through continuous, automated control monitoring and evidence collection, resulting in a strong security posture, lower costs, and less time spent preparing for annual audits. The company is backed by ICONIQ Growth, Alkeon Capital, Salesforce Ventures, GGV Capital, Cowboy Ventures, Leaders Fund, Okta Ventures, SVCI, SV Angel, and many key industry leaders. For more information, visit