top of page

Finagraph Achieves Two Major Security Milestones

Bellevue, WA: Finagraph today announced the Company has successfully completed its Systems and Organizational Control (SOC) 2 Type 2 examination. SOC 2 reports focus on a Service Organization’s internal controls designed to meet its service commitments and system requirements based on the Security, Availability, Confidentiality, Processing Integrity, and Privacy criteria established by the American Institute of Certified Public Accountants (AICPA).

The examination was conducted by Dansa D’Arata Soucia LLP. With this undertaking Finagraph maintains its adherence to one of the most stringent, industry-accepted compliance frameworks for service organizations and provides additional assurance to its clients, through an independent auditor, that its business process, information technology and risk management controls are properly designed and operating as intended.

The official auditors’ report provides a thorough review of Finagraph’s internal controls, policies, and processes. It also reviews Finagraph’s processes relating to risk management and subservice (vendor) due diligence, as well as Finagraph’s entire IT infrastructure, software development life cycle, change management, logical security, network security, physical & environmental security, and computer operations.

"We completed our first three-month SOC 2 audit last year, and we’re committed to continue growing in our security measures, as this, our first twelve-month audit shows,” said James Walter, Finagraph CEO. “Our clients work with sensitive data and have high expectations for privacy and security. With our SOC 2 report, we can show them that we value security as much as they do.”

This news comes in the wake of Finagraph also achieving another milestone: GDPR Compliance. After a stringent audit of data usage and practices, Finagraph instituted updated policies and procedures that ensure maximum privacy. GDPR compliance will:

  • Allow existing Strongbox clients to expand their usage to their European branches

  • Extend Strongbox availability to EU accounting and advisory firms

  • Broaden the potential range of accounting systems and ERPs that can integrate with Strongbox

“Our team really pushed for GDPR,” says Finagraph CRO Justin Pulgrano, “but it was ultimately a client-driven decision. They were the ones saying their EU teams need this. It’s very exciting to be able to go back to them and say yes – we are ready!”

To learn more about Strongbox’s security and privacy features, click here.

About Finagraph: Finagraph makes financial intelligence and analysis instantaneous through cutting edge software. Finagraph products help businesses across a variety of financial sectors, including Top 25 accounting firms, the Big Four, and the largest fintech companies in the world. Finagraph’s flagship product, Strongbox, integrates with the most used accounting systems and ERPs for instant financial data delivery. Learn more at

About Dansa D’Arata Soucia LLP: Dansa D’Arata Soucia LLP (“DDS”) is a full-service CPA firm based out of Buffalo, New York. Over the past decade, DDS has built a team of auditors dedicated to understanding the AICPA’s Trust Services Criteria and how properly applying best practices to comply with this set of criteria results in mitigation of risk as it relates to protecting sensitive data. DDS understands that a SOC 2 examination can be initially intimidating. As such, DDS has worked tirelessly on finding ways to streamline the examination process to be as minimally invasive as possible on company resources. This allows the management teams of their clients to stay focused on growing their businesses! To learn more about DDS and their SOC services, please contact Daniel Garigen, CPA at and visit their website at

FOR IMMEDIATE RELEASE: November 21, 2022

Carmela Orsini




bottom of page