This is not accomplished by auditors; it is completed through the databrackets staff to determine the gaps in just the process. This provides them really specific tips of controls they have to layout and implement. ISO 27001, which has sizeable overlap with the SOC 2 conditions, is well-liked internationally and https://www.nathanlabsadvisory.com/blog/nathan/benefits-of-hipaa-compliance-certification-for-us-professionals/