A SOC 2 attestation is predicated on the Rely on Services Criteria and is particularly provided by a registered CPA organization approved via the AICPA. Generally, a SOC 2 report is legitimate for a calendar year plus the organization is needed to interact a similar or a different CPA company https://www.nathanlabsadvisory.com/blog/nathan/maximize-business-trust-and-security-with-hitrust-compliance/
