TruGrid - Compliance

Compliance overview

TruGrid holds a SOC 2 Type II attestation. The auditor's accreditation letter, along with a live view of TruGrid's security controls, is available through the TruGrid Trust Center . The report is released to customers and prospects on request, subject to Support and Management approval.

TruGrid is hosted on Microsoft Azure platforms in the United States and inherits Azure facility compliance including ISO 27001, HIPAA, HITECH, FedRAMP, and SOC 1/2. The platform enforces mandatory MFA, modern TLS (1.2 and 1.3), encryption in transit and at rest, and stores no passwords in its database. TruGrid supports PCI, HIPAA, and GDPR compliance efforts where applicable, and does not store customer credit card or financial data.

Trust Center

The Trust Center at https://trust.trugrid.com is hosted and continuously monitored by Secureframe. It provides:

• Resources - the SOC 2 Type II accreditation letter, available via a Request action.
• Monitoring - a live view of the control families Secureframe monitors on TruGrid's behalf (change management, availability, confidentiality, access security, network security, vulnerability management, incident response, risk assessment, organizational management, and communications). Each family expands to show individual control descriptions.

Requesting the SOC 2 report

The report is gated behind a request-and-approval flow so distribution is tracked.

1. Go to https://trust.trugrid.com.
2. Under Resources, find SOC 2 Type II - Accreditation Letter by Auditor and click Request.
3. Complete the requestor details and accept any required NDA or access agreement.
4. Submit. The request goes to TruGrid Support and Management, who validate the requestor and approve or deny it.

On approval, access is delivered and tracked through the portal. No emailed attachment required.

Updated on: 09/06/2026