ITrack Achieves SOC 2 Type II Compliance

We are thrilled to share a major achievement that validates our unwavering commitment to security and reliability: ITrack Inventory Management and E-Commerce Platform has successfully completed the rigorous System and Organization Controls (SOC) 2 Type II examination.

For our valued customers—heavy truck parts dealers, construction equipment sellers, equipment recyclers, and parts distributors—who rely on ITrack software to run essential operations like inventory tracking, sales order processing, and online marketplace integration, this certification is confirmation that your data is handled with the highest standard of care and professionalism.

What is SOC 2 Type II and Why Does it Matter to Your Business?

SOC 2 (Service Organization Controls 2) is a stringent auditing standard defined by the American Institute of Certified Public Accountants (AICPA). A SOC 2 audit requires an independent service auditor to review an organization’s policies, procedures, and evidence to determine if security controls are appropriately designed and operating effectively.

Achieving Type II compliance is paramount because it means our security controls were assessed not just for design, but for their operating effectiveness over a specific period of time. A resulting SOC 2 report communicates this commitment to data security and the protection of customer information.

The Details: Unqualified Success for ITrack

The audit focused specifically on the ITrack Inventory Management and E-Commerce Platform system utilized by ISoft Data Systems, Inc..

The examination period covered June 11, 2025, to September 11, 2025. We are proud to report that the independent service auditor, Advantage Partners (located in Seattle, WA), issued an Unqualified Opinion with No Exceptions Noted.

This means the tested controls operated effectively throughout the period to provide reasonable assurance that ISoft Data’s service commitments and system requirements were achieved, specifically based on the applicable trust services criteria relevant to Security.

Building Trust Through Robust Security Controls

ITrack software provides inventory management solutions tailored for the heavy truck and equipment industries, helping companies manage everything from parts and accessories to custom job templates and vehicle equipment. Our management philosophy is dedicated to being excellent and conservative stewards of the highly sensitive data and workflows our customers entrust to us.

The SOC 2 Type II compliance provides third-party validation that the systems underpinning ITrack are robust and secure. Key security controls that were examined and confirmed to be operating effectively include:

Logical Access Controls: We restrict unauthorized users from accessing information not needed for their role through system features and configuration settings. User access is based on job role and function, and we conduct access reviews at least quarterly.
Data Protection (Encryption): We protect customer data both at rest and in transit using encryption technologies.
Vulnerability Management: We conduct regular vulnerability scans over the system and network (at least quarterly on all external-facing systems) and execute penetration tests over the production environment. Identified critical and high vulnerabilities are tracked to remediation.
Intrusion Detection: We employ intrusion detection systems (IDS) to prevent and identify potential security attacks from outside the system boundaries. The GuardDuty security application is utilized for automated intrusion detection.
Incident Response: We maintain documented operational procedures for managing security incidents and breaches, including notification procedures. Our incident response plan is tested at least annually.
Secure Data Disposal: We maintain policies for data retention and data disposal.

Our Journey to Compliance: Partnering for Excellence

This achievement required focused effort and dedication. We recognize that compliance is an integral step in proving to customers and stakeholders that our organization values their trust and has effectively implemented security controls.

To achieve audit readiness and streamline the process, we partnered with trusted compliance vendors:

Vanta: We leveraged Vanta as our compliance management vendor to automate the collection of audit evidence and guide the implementation of necessary policies and procedures.
Advantage Partners: Our audit firm, Advantage Partners, conducted the examination and provided support that streamlined the audit experience.

Security is Our Continuous Commitment

Achieving SOC 2 Type II compliance is a major milestone, but maintaining security is an ongoing priority. At ISoft Data Systems, we take pride in constantly learning and improving, ensuring we balance growth in a rapidly changing technology space with the conservative stewardship of your sensitive data. By mitigating risk early, we protect our business and earn the continued trust of our customers.

ITrack is committed to providing modern and up-to-date technology that powers your heavy truck shop. Ready to experience modern inventory management software backed by top-tier security standards? Get a demo of ITrack today!