Valimail Achieves SOC 2 Type 2 Certification

Valimail IDEA™ Platform, Designed to Bring Trust to Email, Demonstrates Continued Commitment to Customers for Security Best Practices


SAN FRANCISCO, June 14, 2018 — Valimail, the world’s only provider of fully automated email authentication, announced today that it has completed a SOC 2 Type 2 certification.

SOC 2, developed by the American Institute of Certified Public Accountants (AICPA), is a widely recognized authoritative guidance that ensures a company’s information security measures are in line with today’s specific cloud requirements. As companies increasingly use the cloud to store sensitive data, SOC 2 compliance is vital to organizations in a wide array of industries and governments.

Companies who complete an annual SOC 2 examination are able to demonstrate a substantially higher level of assurance and operationally visibility than those companies who do not.

The completion of the SOC 2 Type 2 examination exemplifies Valimail’s commitment to creating and maintaining the most stringent controls needed to ensure the highest quality and security of email authentication services for their customers. The company previously achieved SOC 2 Type 1 compliance and is Privacy Shield certified.

“As a company whose business is restoring trust to email, it’s imperative that our customers can trust Valimail’s platform itself,” said Valimail co-founder and CTO Peter Goldstein. “By following industry best practices like SOC 2, we can give customers the confidence that any data we handle is as secure as possible. In addition, Valimail’s technology does not require us to handle any personally identifiable information (PII), streamlining use cases, like GDPR, where stringent privacy controls are necessary.”

The examination was performed by 360 Advanced, Inc., a full-service IT assurance, compliance, and security firm that specializes in integrated compliance solutions, including conducting SOC examinations. The Service Auditor’s Report includes a detailed description of Valimail’s controls and an independent assessment of whether the controls are placed in operation, suitably designed, and operating effectively. To receive a copy of the Service Auditor’s Report, or for any further questions, please contact Valimail senior security engineer Eric Holtzclaw at

For further information on how Valimail’s suite of products can stop email impersonation and restore trust to email, please contact

Get started for free
with Monitor

Start your path to DMARC enforcement with a panoramic view of the traffic being sent on your behalf.
No trial offers, credit cards, or obligations.

Explore all Valimail
has to offer

Go one step further than visibility…Take action! Reach DMARC enforcement faster. Stay compliant with evolving sender requirements. All while protecting your brand.

Phishing and BEC protection starts with your domain — verify your DMARC status with the Valimail Domain Checker.