TripActions Successfully Completes SOC 2 Audit

PALO ALTO, CA, April 13, 2021 — TripActions, the leading, cloud-based travel and spend management platform, today announced its completion of the Service Organization Controls (SOC) 2® Type II report for its travel booking and employee expense solutions.

The audit provided a thorough review of the TripActions systems that handle user data, analyzing the security, privacy, confidentiality, availability, and processing integrity of the information processed by these systems.

With more than 4,000 customers worldwide, TripActions takes the commitment to privacy and security seriously. SOC 2 compliance provides customers and vendor partners with the assurance that TripActions is taking the appropriate actions to protect customers’ data and corporate reputations. The SOC 2 Type II standards help vendors recognize and establish cross-functional values within their organizations.

“Obtaining the SOC 2 Type II is an important step in TripActions’ ongoing security program,” says Nils Puhlmann, TripActions Chief Trust & Security Officer. “SOC 2 Type II is a part of our efforts to help our global customers have confidence in our ability to secure their information and, in turn, our long-term success.”

SOC 2 is an auditing procedure that ensures service providers manage data to protect the interests of an organization and its clients’ security and privacy. Developed by American Institute of CPAs (AICPA), SOC 2 is defined by five “trust service principles” for managing customers’ data: security, availability, processing integrity, confidentiality and privacy.

Focused on implementing well-defined policies, procedures, and practices, SOC 2 establishes trust in the secure nature and operation of an organization’s cloud infrastructure.

SOC 2 requires long-term, ongoing internal practices to ensure customer information security. Reports provide organizations, along with respective regulators, business partners, and customers, important information on data management. TripActions intends to make its annual SOC 2 reports available by request to both current and potential customers under a non-disclosure agreement.

In addition to SOC 2 compliance, TripActions is making continued enhancements to its infrastructure by adding additional layers of redundancy and increasing monitoring coverage of its platform.

About TripActions Fast becoming the default for corporate travel and expenses, TripActions is the leading, cloud-based T&E platform that combines industry-leading tech with best-in-class travel agency service. Trusted by more than 4,000 companies globally, TripActions empowers organizations with real-time data to make business decisions and provides flexible T&E management tools that enable them to adapt to changing market conditions to keep traveling employees safe, control costs, and save money. Learn more at

See where Navan
will take your company