Background checks for SOC 2 compliance can be an effective way to demonstrate control objectives, but designing policies that meet specific security objectives may introduce unintended consequences and interfere with other company objectives like fair chance hiring. Organizations should understand what is required to meet their control objectives, which are principles-based and not as rigid as they may seem. Job-relevant screening guidelines can help minimize unnecessary exclusions, while demonstrating the effectiveness of a background check program over time is crucial for achieving combined SOC 2 and fair chance hiring objectives. Two types of SOC 2 audits exist: Type 1, which examines controls in place at a "snapshot in time", and Type 2, which examines evidence and effectiveness of controls over time. To support SOC 2 compliance needs, organizations can utilize tools like Assess and Insights for consistent evaluation of criminal records based on policy, and tools like Candidate Stories to request further information on a candidate's record.