Security Center
Effectory information security and privacy measures are designed and implemented to protect the personal data of employees of customers, and survey results of customers.
Effectory is ISO 27001 and ISO 27701 certified for the above scope. Effectory is SOC 2 Type 2 audited successfully. A standardized vendor questionnaire according to CSA CAIQ is also available. A comprehensive whitepaper is available explaining in much more detail all Effectory technical and organizational measures to protect customer data. Below the documents, a selection of Effectory technical and organizational measures are explained at high-level.
Access to all these documents can be requested via this site using the provided buttons. It is also possible to optionally subscribe to updates of this page, including when new certificates or other documents are available. If you choose not to use this site, then please ask your Effectory sales consultant or Effectory customer success manager directly to obtain the desired documentation.
Mediq Nederland
London Luton Airport
ALDI Nederland
Jumbo Supermarkten
bol.com
Protime
ANWB
Quoniam Asset Management
Menzis
SFS Group
Hogeschool Utrecht
Achmea
Rijnstate
Noordwest Ziekenhuisgroep
BDO Nederland
Gerresheimer AG
Royal FloraHolland
Tony's ChocolonelyDocuments
Effectory successfully completes SOC 2 Type II audit for 2025
Effectory has successfully completed its SOC 2 Type II audit for 2025. This independent assessment, conducted by registered auditors, evaluated the design, existence, and operating effectiveness of Effectory’s technological and organizational controls for safeguarding customer data and personal data.
The audit covered the period from January 1 to September 30, 2025. The auditors concluded that Effectory’s controls are suitably designed and operate effectively to meet the SOC 2 Type II requirements for security and privacy. The full SOC 2 Type II report is available for download on this website.
Effectory platform successfully passes independent penetration test 2025
Recently a penetration test was conducted on the My Effectory platform. This assessment was conducted by a certified third-party security firm to evaluate Effectory platform’s resilience against potential cyber threats.
The results confirmed that Effectory’s security measures are effective in protecting customer data and maintaining the integrity of the platform. This successful outcome reinforces our ongoing commitment to safeguarding our customers’ information and continuously improving our security posture.
The full penetration test summary report is available for download on this website.
Effectory achieved FSQS-NL certified status
Effectory achieved the status of a certified supplier under FSQS-NL requirements (Financial Services Qualification System). FSQS is a community of financial institutions including banks, building societies, insurance companies and investment services, collaborating to agree a single standard for managing the increasing complexity of third and fourth-party information needed to demonstrate compliance to regulators, policies and governance controls.
Effectory achieved SOC 2 Type II for 2024
Effectory recently the SOC 2 Type II audit for 2024. This means independent register auditors examined the Effectory technological and organizational controls for protecting customer data. The auditors' findings are that these controls are adequate for the data protection scope. Furthermore, the design, existence, and operating effectiveness of these controls are assessed with positive outcome during January 1, 2024, until September 30, 2024. The report can be downloaded on this site.
Effectory achieved SOC 2 Type II for 2023
Effectory recently completed a SOC 2 Type II audit. This means independent, accredited auditors examined the Effectory technological and organizational controls for protecting customer data. The auditors' findings are that these controls are adequate for the data protection scope. Furthermore, the design, existence, and operating effectiveness of these controls are assessed with positive outcome during January 1, 2023, until September 30, 2023. The report can be downloaded on this site.