Lightfoot Completes SOC 2 Type II Audit and Secures Report For Second Year

February 26, 2025

Lightfoot, Franklin & White LLC is pleased to announce the firm has successfully completed its second consecutive System and Organization Control (SOC) 2 Type II audit. This rigorous process reaffirms Lightfoot’s unwavering commitment to information security and integrity, a significant achievement for any firm. 

To achieve a SOC 2 Type II report, organizations must undergo an exhaustive audit of their procedures and controls for privacy, security and risk management. Lightfoot consistently reviews and strengthens how the firm collects, manages, stores and secures client data. To ensure ongoing compliance and a commitment to continual improvement, Lightfoot will conduct annual audits to uphold these standards. 

“Completing this audit and securing a no exception report for the second year underscores the dedication of our IT team and our firm-wide commitment to safeguarding client data,” said Corey Thomas, Lightfoot’s chief technology officer. “Our clients trust us with a wide variety of sensitive data, and this achievement demonstrates our high level of commitment to the highest industry standards for data security.” 

Established by the American Institute of Certified Public Accountants (AICPA), the SOC 2 examination is a globally recognized benchmark for assessing an organization’s internal controls. A SOC 2 Type II report evaluates an organization’s infrastructure, software, personnel, data policies, procedures and operations over an extended period, typically six months to a year. The audit is based on five Trust Service Criteria (TSC): security, availability, processing integrity, confidentiality and privacy.