Building trust into Soxton from day one
Speed matters in legal workflows, but trust matters just as much. Here is how we are approaching security, visibility, and operational maturity as part of our Vanta-supported SOC 2 process.
Trust has to be visible
Customers trust Soxton with high-context legal work: agreements, approvals, workflows, signatures, and sensitive coordination across teams. That means product speed alone is not enough. We also need to make our operating standards visible and legible.
As we move through our Vanta-supported SOC 2 process, we are tightening the basics early: clearer public documentation, stronger internal controls, and cleaner ways for customers to understand how the platform is run.
What we are putting in place
Some of the work is operational and internal. Some of it should be visible to customers. We want both to improve together.
- A public security reporting page so researchers and customers know how to contact us responsibly.
- A public status page so availability issues and incident history are easier to follow.
- More explicit ownership around access, change management, and customer-facing documentation.
The standard we are aiming for
We want Soxton to feel fast, but never improvised. The right standard is a product that helps legal work move quickly while still giving customers confidence in how requests, documents, and workflows are handled.
You should expect us to keep publishing more of this work in public as the product matures. That includes product updates, operational notes, and clear signals about what has changed and why.