GENEVA AND AUSTIN — February 12, 2025 — Sonar, the leading provider of code quality and security solutions, today announced that it has achieved Service and Organization Controls (SOC) 2 Type II compliance, a gold standard in data security and operational excellence. This accomplishment underscores Sonar’s dedication to protecting customer data and ensuring the highest level of trust and transparency in its operations as well as its SonarQube offering — SonarQube Server, SonarQube Cloud, and SonarQube for IDE.
The SOC 2 Type II compliance is awarded following an in-depth independent audit, which evaluates a company’s controls, policies, and procedures, against the American Institute of Certified Public Accountants (AICPA) Trust Services Criteria over an extended period. Achieving this compliance demonstrates Sonar’s ability to implement and maintain effective controls to protect sensitive information and ensure security reliability.
“Attaining SOC 2 Type II compliance is a testament to our unwavering dedication to data security and our customers,” said Andrea Malagodi, CIO of Sonar. “This achievement not only validates the robust systems and processes we’ve built but also assures our customers that their trust in us is well-placed. We will continue to invest in our infrastructure and practices to deliver not only best-in-class solutions for code quality and security but also peace of mind to our customers.”
By achieving compliance, Sonar has met the stringent criteria outlined in the SOC 2 framework and further solidifies its investment in protecting customer data.
For more information about Sonar’s SOC 2 Type II compliance and its commitment to security, visit https://www.sonarsource.com/trust-center/.
About Sonar
Sonar is the trust and verification layer for AI code, and the industry standard for automated code review for 17+ years. Integrating code quality and code security into a single platform, Sonar delivers deterministic, repeatable, and actionable code verification at scale, analyzing over 750 billion lines of code daily to ensure software is secure, reliable, and maintainable. Rooted in the open source community, Sonar is trusted by 7M+ developers globally, including teams at Microsoft, Adobe, Deutsche Bank, AstraZeneca, and Ford Motor Company.
To learn more about Sonar, please visit: https://www.sonarsource.com/products/all/