OUTSCALE, a Dassault Systèmes brand, reaches a new milestone in securing critical data by obtaining the SOC 2 Type 2 attestation. This international recognition demonstrates the effectiveness and reliability of security controls implemented over time to protect its customers’ data and intellectual property. This attestation complements an already well-established compliance framework, with Cloud services certified to ISO 27001, HDS, CISPE, TISAX and qualified SecNumCloud.
SOC 2 Type 2: a globally recognised, long-term proof of trust
The SOC 2 Type 2 attestation, conducted in accordance with the standards of the American Institute of Certified Public Accountants (AICPA), is based on requirements internationally adopted by organisations operating Cloud and digital services. Type 1, obtained in April 2025, assesses the design and implementation of controls at a specific point in time. Type 2 goes further by certifying that these controls operate effectively and continuously over an observation period.
Recognised in procurement processes for large enterprises and regulated industries, SOC 2 Type 2 provides a high-level, standardised assurance expected in many vendor assessment processes, particularly among large organisations and regulated sectors. It strengthens OUTSCALE’s position as a trusted operator for organisations handling sensitive data and fully aligns with OUTSCALE’s commitment to supporting the evolution of its customers’ critical use cases, relying on an industrialised approach to control management: evidence, traceability and continuous improvement.
“In a global environment where cyber threats are forcing both private and public organisations to maintain a high level of protection aligned with their strategic challenges, data security has become a central concern: SOC 2 Type 2 addresses this requirement. It confirms the long-term effectiveness and reliability of the security controls implemented by OUTSCALE, and effectively supports our customers’ risk management. This report further strengthens an already unique set of certifications, including SecNumCloud, ISO 27001, HDS, TISAX and CISPE, ensuring both OUTSCALE’s operational excellence and compliance with sovereignty requirements,” said Takwa Nasri, Risk Manager at OUTSCALE.
SOC 2 Type 2: Proof of a High Level of Security
The SOC 2 Type 2 report establishes a comprehensive assurance framework to:
- accelerate due diligence processes (security questionnaires, vendor assessments, internal audits) through independently assessed controls;
- reduce operational risk by demonstrating the continuous application of security controls, not merely their existence at a given point in time;
- facilitate customer-side governance (risk management, compliance, internal audit) by supporting decision documentation and the formalisation of requirements;
- strengthen confidence in OUTSCALE’s ability to maintain a consistently high level of security beyond initial deployment.
Continuous Security at the Core of OUTSCALE’s Strategy
OUTSCALE’s approach is grounded in a sustained commitment to continuous improvement and transparency towards its customers. This momentum reflects a major shift: transforming compliance into a source of ongoing trust, moving beyond a one-off certification mindset to adopt an approach based on evidence governance, control automation, regular reporting and continuous improvement.
This trajectory creates a key differentiator: as customers build critical environments, particularly for regulated data and workloads, OUTSCALE’s ability to demonstrate a rigorous control framework becomes a decision criterion just as decisive as performance.
To view the original press release, please click here.
