Does COKIQ claim SOC 2 or ISO certification?
No. COKIQ does not claim SOC 2, ISO, or similar certification unless real evidence exists.
Back to Trust Center
Procurement asset
Security Overview
This overview explains the security posture COKIQ can document today. It does not claim SOC 2, ISO, or third-party certification.
Owner
COKIQ Security and Operations
Last updated
2026-06-03
Security model
COKIQ protects account access, website configuration, consent records, scan findings, reports, and operational settings using application-level controls and limited operational access.
- HTTPS-only public service access
- Authenticated dashboard access for customer workspaces
- Separation between public marketing pages and authenticated account areas
- Security contact path through security@cokiq.com and the vulnerability disclosure page
Access control
Access control depends on the customer plan and rollout. Enterprise buyers should validate exact role requirements during security review.
- Account login required for dashboard data
- Audit logs are available for governance evidence
- RBAC is marked Beta and should be validated during pilot rollout
- SSO/SAML is marked Roadmap and is not sold as live
Operational safeguards
COKIQ publishes trust routes that help buyers inspect vendor, support, incident, and retention expectations before procurement.
- Trust Center
- Status page
- Subprocessors list
- Incident response summary
- Support policy summary
- Data retention summary
FAQ
Where should security questions go?
Security questions can route through the Trust Center, vulnerability disclosure page, or contact form for procurement review.