Creative Realities Completes SOC 2 Type 1 Compliance Audit Process
Creative Realities (NASDAQ: CREX) has successfully completed its Systems and Organizations Controls (SOC) 2 Type 1 audit, demonstrating its commitment to customer data security and reliable SaaS products. The audit, conducted by Johanson Group LLP, took approximately nine months to complete and validates controls relevant to security, availability, integrity, confidentiality, and privacy.
The company's EVP of Software Development, Bart Massey, highlighted that this achievement reflects CRI's organizational growth and improvements in software and cloud infrastructure security. The SOC 2 compliance ensures established practices for safeguarding customer data, covering both software products and administrative functions.
CRI is currently working towards Type 2 compliance, which will verify ongoing operational adherence to the principles established in Type 1.
Creative Realities (NASDAQ: CREX) ha completato con successo la sua audit sui Sistemi e Controlli delle Organizzazioni (SOC) 2 Tipo 1, dimostrando il suo impegno per la sicurezza dei dati dei clienti e per prodotti SaaS affidabili. L'audit, condotto da Johanson Group LLP, ha richiesto circa nove mesi per essere completato e convalida i controlli relativi a sicurezza, disponibilità, integrità, riservatezza e privacy.
Il vicepresidente esecutivo dello sviluppo software dell'azienda, Bart Massey, ha sottolineato che questo risultato riflette la crescita organizzativa di CRI e i miglioramenti nella sicurezza del software e dell'infrastruttura cloud. La conformità SOC 2 garantisce pratiche consolidate per la protezione dei dati dei clienti, coprendo sia i prodotti software che le funzioni amministrative.
CRI sta attualmente lavorando per ottenere la conformità di Tipo 2, che verificherà l'adesione operativa continua ai principi stabiliti nel Tipo 1.
Creative Realities (NASDAQ: CREX) ha completado con éxito su auditoría de Controles de Sistemas y Organizaciones (SOC) 2 Tipo 1, demostrando su compromiso con la seguridad de los datos de los clientes y productos SaaS confiables. La auditoría, realizada por Johanson Group LLP, tardó aproximadamente nueve meses en completarse y valida los controles relevantes para la seguridad, disponibilidad, integridad, confidencialidad y privacidad.
El vicepresidente ejecutivo de Desarrollo de Software de la empresa, Bart Massey, destacó que este logro refleja el crecimiento organizacional de CRI y las mejoras en la seguridad del software y la infraestructura en la nube. La conformidad con SOC 2 asegura prácticas establecidas para salvaguardar los datos de los clientes, abarcando tanto productos de software como funciones administrativas.
CRI está trabajando actualmente para obtener la conformidad de Tipo 2, que verificará la adherencia operativa continua a los principios establecidos en el Tipo 1.
Creative Realities (NASDAQ: CREX)는 고객 데이터 보안 및 신뢰할 수 있는 SaaS 제품에 대한 헌신을 입증하는 시스템 및 조직 통제(SOC) 2 유형 1 감사에 성공적으로 완료했습니다. Johanson Group LLP에서 수행한 이번 감사는 약 9개월이 걸렸으며 보안, 가용성, 무결성, 기밀성 및 프라이버시와 관련된 통제를 검증합니다.
회사의 소프트웨어 개발 부사장인 Bart Massey는 이 성과가 CRI의 조직 성장과 소프트웨어 및 클라우드 인프라 보안 개선을 반영한다고 강조했습니다. SOC 2 준수는 고객 데이터를 보호하기 위한 확립된 관행을 보장하며, 소프트웨어 제품과 관리 기능 모두를 포함합니다.
CRI는 현재 유형 2 준수를 위해 작업 중이며, 이는 유형 1에서 설정된 원칙에 대한 지속적인 운영 준수를 검증할 것입니다.
Creative Realities (NASDAQ: CREX) a réussi à compléter son audit des Systèmes et Contrôles des Organisations (SOC) 2 Type 1, démontrant son engagement envers la sécurité des données clients et des produits SaaS fiables. L'audit, réalisé par Johanson Group LLP, a duré environ neuf mois et valide les contrôles relatifs à la sécurité, la disponibilité, l'intégrité, la confidentialité et la vie privée.
Le vice-président exécutif du développement logiciel de l'entreprise, Bart Massey, a souligné que cette réalisation reflète la croissance organisationnelle de CRI et les améliorations de la sécurité des logiciels et de l'infrastructure cloud. La conformité SOC 2 garantit des pratiques établies pour protéger les données des clients, couvrant à la fois les produits logiciels et les fonctions administratives.
CRI travaille actuellement à obtenir la conformité de Type 2, qui vérifiera l'adhérence opérationnelle continue aux principes établis dans le Type 1.
Creative Realities (NASDAQ: CREX) hat erfolgreich seine Prüfung der Systeme und Organisationskontrollen (SOC) 2 Typ 1 abgeschlossen, was das Engagement für die Sicherheit der Kundendaten und zuverlässige SaaS-Produkte unter Beweis stellt. Die Prüfung, die von der Johanson Group LLP durchgeführt wurde, dauerte etwa neun Monate und validiert die Kontrollen, die für Sicherheit, Verfügbarkeit, Integrität, Vertraulichkeit und Datenschutz relevant sind.
Der Executive Vice President für Softwareentwicklung des Unternehmens, Bart Massey, hob hervor, dass dieser Erfolg das organisatorische Wachstum von CRI und die Verbesserungen in der Sicherheit von Software und Cloud-Infrastruktur widerspiegelt. Die SOC 2-Konformität gewährleistet etablierte Praktiken zum Schutz der Kundendaten, die sowohl Softwareprodukte als auch administrative Funktionen abdecken.
CRI arbeitet derzeit auf die Konformität Typ 2 hin, die die fortlaufende betriebliche Einhaltung der im Typ 1 festgelegten Prinzipien überprüfen wird.
- Achieved SOC 2 Type 1 certification, enhancing company's credibility in SaaS market
- Improved software and cloud infrastructure security
- Working towards more comprehensive Type 2 compliance
- None.
This confirms CRI as a SaaS provider that ensures security, stability, and privacy in its products.
LOUISVILLE, Ky., March 25, 2025 (GLOBE NEWSWIRE) -- Creative Realities, Inc. ("Creative Realities," "CRI," or the "Company") (NASDAQ: CREX), a leading provider of digital signage and media solutions, is pleased to announce the successful completion of its Systems and Organizations Controls (SOC) 2 Type 1 audit. This audit achieved compliance with the leading industry standards for customer data security. This report shows CRI’s ongoing commitment to providing our customers with secure and reliable SaaS products.
“This is a significant achievement for our company and our customers. To reach this point, CRI has matured and grown as an organization, improving everything we do. We’ve enhanced our software and cloud infrastructure to make them more secure and highly available. These changes ensure we stay compliant with best practices and provide great products for our clients,” said Bart Massey, Executive Vice President of Software Development at CRI.
Developed by the American Institute of Certified Public Accountants (AICPA), a SOC 2 information security standard is a report that validates controls relevant to security, availability, integrity, confidentiality, and privacy. The audit was completed with the help of Johanson Group LLP, a premier certification body that helps organizations obtain and maintain global compliance standards. Ensuring that all parts of CRI’s applications and business processes were compliant with SOC 2 requirements took around nine months.
“Partnering with Johanson Group LLP has brought in a third-party auditor to validate our policies and ensure we follow best practices. We take our commitment to SOC II principles seriously, and with the completion of this report, we have a qualified independent auditor who confirms it,” Massey added.
SOC 2 has a rigorous requirement on how companies handle customer data and information, so compliance guarantees that established and implemented organizational practices are in place to safeguard customer data. CRI’s case involves its software products and all the administrative functions needed to support them.
CRI is actively working to complete Type 2 compliance. Type 1 focuses on evaluating processes, infrastructure and policies. Type 2 provides independent verification that the company’s ongoing operations continue to follow the practices and principles specified and required by Type 1.
More information on Creative Realities’ SOC 2 Type 1 compliance process will be available soon on cri.com.
About Creative Realities, Inc.
Creative Realities designs, develops and deploys digital signage-based experiences for enterprise-level networks utilizing its Clarity™, ReflectView™, and iShowroom™ Content Management System (CMS) platforms. The Company is actively providing recurring SaaS and support services across diverse vertical markets, including but not limited to retail, automotive, digital-out-of-home (DOOH) advertising networks, convenience stores, foodservice/QSR, gaming, theater, and stadium venues. In addition, the Company assists clients in utilizing place-based digital media to achieve business objectives such as increased revenue, enhanced customer experiences, and improved productivity. This includes the design, deployment, and day to day management of Retail Media Networks to monetize on-premise foot traffic utilizing its AdLogic™ and AdLogic CPM+™ programmatic advertising platforms.
Contacts
Media Inquiries
Breanne Ngo
bngo@ideagrove.com
Investor Relations
Chris Witty
cwitty@darrowir.com
646-438-9385
ir@cri.com
https://investors.cri.com/
FAQ
What does the SOC 2 Type 1 certification mean for CREX's software security?
How long did it take CREX to complete the SOC 2 Type 1 audit process?
Who conducted Creative Realities' (CREX) SOC 2 Type 1 audit?
What is the difference between SOC 2 Type 1 and Type 2 compliance for CREX?
