System and Organization Controls (SOC) 2 is an auditing procedure that ensures service providers securely manage customer data. The SOC 2 framework is based on five trust service criteria: security, availability, processing integrity, confidentiality, and privacy.