Planning Center is SOC 2 Compliant: Affirmation of Our Commitment to Security

You trust Planning Center with very personal and private information. Your congregation’s prayer requests, children’s check-in locations, financial data, and so much more are in your Planning Center database.

We take your trust very seriously and do everything possible to protect your data.

To affirm our commitment to security, Planning Center has officially completed a  SOC 2 audit of our systems, processes, and policies.

SOC 2 is the standard in information security. Every privacy-minded organization pursues the audit, and Planning Center went through stringent testing to confirm we protect your data.

What SOC 2  Means for Your Security  

Here’s what you most need to know about what Planning Center being SOC 2 compliant means for you and your congregation:

1. Your data is in the safest hands it can be.  To our knowledge,  Planning Center is currently the only major church management system to comply with this standard.
2. Your data will only become more secure. The SOC 2 audit renews annually. Our team has benchmarks to meet throughout the year and systems to monitor to keep our status. This means Planning Center guarantees a long-term commitment to the security of your data.
3. Your data security is personally cared for by our employees. Every Planning Center employee had to verify their commitment to the guidelines of SOC 2 to pass this audit. Our developers, designers, and support agents work within security systems and processes to build and support our products.

To achieve these three things, we implemented additional encryption practices, had our employees commit to policies about how they interact with customer data, and created systems to respond to possible threats.

More About SOC 2

The American Institute of Certified Public Accountants (AICPA) created the Service Organization Control (SOC 2) framework to test organizations’ ability to protect data from potential threats.

To pass SOC 2, we worked with an AICPA-approved auditor, Johanson Group,  to critique our company based on five areas: security, availability, processing integrity, confidentiality, and privacy.  This audit included a review of our policies, backup and disaster recovery, incident response, firewall configurations, and other critical areas of our business. After completing the audit, we received an Auditor’s Report, proving Planning Center meets and exceeds the SOC 2 criteria.

You can request a copy of the complete SOC 2, Type 1 report from our security page. We will also provide the follow-up  SOC 2, Type 2 report after we’ve completed the required monitoring.

If you want to learn more about  SOC 2, this blog post is a great introduction and overview of the process. If you have any questions about SOC 2 or Planning Center’s approach to security, you can reach out to us at any time at support@planningcenter.com.

The security of your data and the personal information of your congregation matters deeply to us, and we’re committed to protecting it.

💙 Planning Center