Update: Flourish renewed our SOC 2 Type II report in 2022 and 2023.
ATLANTA, September 15, 2021 – Flourish Software, a leading enterprise seed-to-sale tracking and supply chain management software solution built for regulated cannabis, CBD, and hemp cultivators, manufacturers, distributors, and retailers, is pleased to announce it has now received its System and Organization Controls for Services Organizations Type II (SOC 2 Type II) report following an independent audit conducted by Aprio, a licensed public accounting firm and certified specialist in SOC reporting. This compliance and auditing process sets Flourish apart from other technology providers in the space and is fundamental to maintaining data integrity, security, availability, confidentiality, and privacy— tenets vital to the cannabis industry.
Obtaining the rigorous SOC 2 Type II report underscores Flourish’s commitment to the safety and security of client data. A six-month observation period started in December after Flourish obtained SOC 2 Type I report, which certified that proper controls were in place. The certification process required observation of day-to-day operations by a third-party auditor to validate Flourish’s adherence to the established security controls, systems, and policies. This certification is particularly important to publicly traded clients who must have confidence in the integrity of their critical IT infrastructure and data.
“The completion of the SOC 2 Type II certification recognizes Flourish’s ongoing commitment to data integrity,” says Bennett Adams, CTO of Flourish Software. “Aprio provided an external review of our operations and tested all of the systems and policies that we have in place. We sincerely appreciated the feedback and knowledge they provided. Our software enables the cannabis supply chain, and by attaining this certification, we reaffirm that we are leading the way in providing trust and security to enterprises, consumers, and patients in the industry.”
“As a company that holds very private information about patient cannabis use, it is critical that we adopt the highest level of cybersecurity standards available,” says Neil Hampshire, CIO at Parallel Brands. “Confirming that and sharing it with our customers differentiates us from the competition in the cannabis retail space. We could not do so if we didn’t have a software partner credentialed as Flourish is under SOC 2 Type II.”