GetBlock Completes SOC 2 Type II Attestation

GetBlock Completes SOC 2 Type II Attestation
Share

GetBlock has completed a SOC 2 Type II examination, the compliance standard that banks and regulated enterprises commonly require of the infrastructure vendors they work with.

GetBlock completes SOC 2 Type II

GetBlock, a Tier 1 RPC node provider and infrastructure platform for Web3 and AI, has received a SOC 2 Type II report, the result of an extended independent audit of its security and operational controls.

The attestation comes less than four months after the company completed SOC 2 Type I, a timeline that reflects how much of the underlying control framework was already in operation rather than newly built.

The audit was conducted by Atom Assurance, an independent firm that specializes in SOC, ISO, GDPR, and PCI engagements. Over the Type II observation period, Atom Assurance assessed both whether GetBlock's controls were appropriately designed and whether they operated effectively and consistently across the full reporting window.

"If one announcement crowns everything we've built in the first half of 2026, this is it: GetBlock is fully SOC 2 Type II compliant. It's one of the most demanding voluntary audit standards in our space, and it reflects how seriously we take security, reliability, and compliance for every customer, in every market we serve. To our enterprise customers: once you move to GetBlock, the strictest regulator and the most demanding vendor will find nothing to object to. And to the team: outstanding work this year. Let's keep pushing."

— Vasily Rudomanov, CEO of GetBlock

On GetBlock's side, the SOC 2 Type II process was led by Dmitrii Petrov, Lead Tech PM and one of the company's first technical hires.

Why this matters for GetBlock and its clients

The attestation affects how GetBlock works with regulated and enterprise clients in three main areas.

Regulatory compliance. Many regulated organizations, including banks and other financial institutions, are permitted to work only with vendors that hold a current SOC 2 attestation. With Type II in place, GetBlock meets that requirement and can onboard enterprise and institutional clients that were previously out of reach.

Due diligence. Most enterprises also run internal security reviews before integrating a new vendor. A SOC 2 Type II report addresses a large share of those questionnaires directly, giving security teams much of the documentation they expect at the outset.

Continuous compliance. Type II is not a one-time review. Maintaining it requires GetBlock to operate its security, availability, and operational controls to audited standards on a continuous basis, across the markets it serves.

What is SOC 2 Type II?

SOC 2 stands for System and Organization Controls 2, an auditing framework developed and maintained by the American Institute of Certified Public Accountants (AICPA). The AICPA introduced the SOC reporting suite in the early 2010s to replace the older SAS 70 standard, giving service organizations a consistent, independently verifiable way to demonstrate the strength of their controls.

A SOC 2 audit is organized around five Trust Services Criteria, often called the five principles:

  • Security: systems and data are protected against unauthorized access. This is the mandatory baseline that every SOC 2 engagement covers.
  • Availability: systems are available for operation and use as committed or agreed.
  • Processing integrity: system processing is complete, valid, accurate, timely, and authorized.
  • Confidentiality: information designated as confidential is protected throughout its lifecycle.
  • Privacy: personal information is handled in line with the organization's stated commitments.

The two report types differ in their treatment of time. Type I evaluates whether controls are properly designed at a single point in time. Type II evaluates whether those same controls operate effectively over an extended observation period, usually between three and twelve months, which is why regulated and enterprise buyers generally regard it as the stronger signal.

Work with GetBlock

GetBlock's SOC 2 Type II attestation applies across its infrastructure portfolio, which includes Shared Nodes for multi-tenant access to more than 130 blockchains, now with up to 75% higher compute unit limits; Dedicated Nodes for single-tenant performance; and Limitless Node, a fixed-RPS plan without compute unit caps.

The same controls extend to the company's wider product line, including its TRON Energy Rental service and Crypto Wallet Audit stack.

Beyond its own infrastructure, GetBlock also works with security partners. It integrates the Glider Token Risk API to surface on-chain token and contract risk signals, and partners with Hexens on the Builder Support Program, which gives early-stage teams access to security tooling before their first formal audit.

Enterprises that need a copy of the SOC 2 Type II report for their own vendor review can request one from GetBlock under NDA.

Community members

[ Our community ]

[ Community hires ]