Aragon.ai is Now SOC 2 Type II Compliant
We are excited to announce that Aragon.ai has officially achieved SOC 2 Type II compliance. This certification, awarded by the American Institute of Certified Public Accountants (AICPA), is one of the highest standards for security and trust. It confirms that our systems, processes, and policies meet rigorous requirements for protecting data and operating with excellence.
What SOC 2 Type II Means
So what does this even mean? SOC 2 Type II compliance isn't something that can be achieved overnight. It is a months-long review where independent auditors evaluate how we actually operate, not just what we claim on paper. The result is proof that Aragon consistently protects your photos and data with industry-leading security controls.
Security at the Core of Aragon
From day one, Aragon has been built with security-first principles. Our audit confirmed that we:
- Encrypt all data, both in transit and at rest Every photo, upload, and output is protected with strong encryption, whether it is moving between systems or stored on our servers.
- Use strict access controls with least-privilege permissions Only authorized team members have access, and even then, only to the data they need to perform their role.
- Follow retention policies that prioritize privacy Data is not kept longer than necessary. We automatically expire and remove training data to ensure privacy is always protected.
- Maintain reliable uptime and continuity plans to keep services running Our infrastructure is designed for resilience, with safeguards in place to keep Aragon available even during unexpected events.
- Continuously monitor systems and respond rapidly to potential incidents We track system activity in real time and have clear procedures to act quickly if unusual behavior is detected.
- Evaluate and manage third-party vendors to ensure they meet our security standards Any partners or tools we work with are reviewed to ensure they align with the same strict controls that we follow internally.
Why It Matters for You
Compliance might seem technical, but SOC 2 Type II offers a ton of benefits to everyone using Aragon.ai. Whether you're buying a one-time pack or introducing Aragon to your organization, this achievement is important to you.
- Individuals: Your photos are encrypted, securely stored, and automatically managed with strict privacy policies. Even if you only use Aragon once, you receive the same enterprise-level protection as our largest customers.
- Teams: Whether onboarding 10 or 10,000 employees, Aragon scales securely. Our systems have been independently verified to handle high volume while keeping every upload safe.
- Compliance-driven companies: Aragon's SOC 2 Type II report provides the documentation you need to satisfy vendor reviews and streamline your own audits.
In short, SOC 2 Type II compliance means:
- Peace of mind that your data is private and protected
- Scalable security for individuals, teams, and enterprises
- Confidence that Aragon meets the highest standards for data protection
And beyond compliance, this milestone reflects our core mission: helping people look professional, feel confident, and present their best selves, backed by a platform they can truly trust.
A Milestone, Not the Finish Line
Achieving SOC 2 Type II compliance is a major step forward, but security is never finished. We will continue to strengthen our systems, adapt to emerging risks, and invest in improvements that keep your data safe.
We are grateful to the millions of people who trust Aragon, and to our partners at Vanta and Prescient Security for helping us achieve this milestone!
