January 20, 2026

Rivanna Achieves SOC 2 Type II Certification

We’re proud to share that Rivanna has achieved SOC 2 Type II certification — a rigorous, independent audit validating the design and operating effectiveness of our security controls over an extended period of time.

For our customers, this milestone matters because Rivanna is trusted with some of the most sensitive information in private markets — including diligence materials, deal documents, and proprietary investment committee collateral. SOC 2 Type II certification reflects the seriousness with which we treat that responsibility.

What SOC 2 Type II Means

SOC 2 is a widely recognized compliance standard developed by the American Institute of Certified Public Accountants (AICPA). It evaluates a company’s controls across categories such as:

  • Security
  • Availability
  • Confidentiality
  • Processing Integrity
  • Privacy

Type II goes a step further than Type I: it doesn’t just evaluate whether controls exist — it assesses whether those controls are consistently followed over time, based on an independent auditor’s testing.

Institutional-Grade Security by Design

At Rivanna, we operate with institutional-grade security practices and maintain robust safeguards designed to protect customer data end-to-end.

SOC 2 Type II certification validates our controls across key areas, including:

  • Customer data protection: safeguards around handling and storing sensitive information
  • Secure infrastructure: strong access controls, secure cloud configuration, and environment segmentation
  • Monitoring and alerting: systems to detect anomalies and unauthorized behavior
  • Incident response readiness: documented processes for investigation, escalation, and resolution
  • Operational discipline: repeatable internal procedures that prevent security from becoming ad hoc

We maintain security as a first-order priority across platform architecture, internal operations, and customer data handling.

Thank You

We’re grateful to our clients for the trust they place in Rivanna. 

SOC 2 Type II certification is not the end of our security journey, but rather it’s a step forward in our ongoing commitment to protecting customer data and operating with the rigor that institutional workflows demand.

If you’d like to learn more about Rivanna’s security posture, compliance program, or due diligence workflow capabilities, feel free to reach out.

Richard Song

CEO & Co-Founder

Learn how Rivanna can accelerate your due diligence

Request a demo to get started

Book a demo

More posts

2/4/26

Extending Diligence Beyond the Data Room

1/29/26

January Product Updates

1/21/26

How AI Will Transform Private Markets Investing