Sonar has achieved SOC 2 Type II compliance, a significant milestone reflecting its dedication to protecting customer data and ensuring operational integrity. To achieve this certification, an audit by a third party validated that Sonar implements industry-leading controls for managing sensitive code, metadata, and processes based on five key principles: security, availability, confidentiality, privacy, and processing integrity. The Trust Services Criteria pursued include security measures such as firewalls and encryption, regular security audits, and vulnerability assessments, as well as confidentiality and availability controls to safeguard sensitive information and ensure timely access to services. Achieving SOC 2 Type II compliance provides customers with assurance that Sonar handles their code and metadata securely and confidentially, maintains high availability and reliability, and adheres to best practices for risk management and operational oversight. As the software development ecosystem continues to evolve, Sonar is dedicated to enhancing its security measures to stay ahead of emerging threats.