Women shaking hands

Codat Case Study

Codat gains a true partnership with BARR Advisory and anecdotes, leading to an automated ISO 27001 certification and a SOC 2 report.

At a Glance

Codat provides a universal application programming interface (API) to SaaS and financial service providers who use API to build connected products for its business customers. With a focus on small businesses, Codat makes accessing consented business data from customers’ banking, accounting, and commerce platforms easy with a single integration.

Codat recently partnered with both BARR and anecdotes, the compliance automation platform, to help simplify the audit process and meet compliance requirements for its growing customer base.

The Challenge

Prior to partnering with BARR and anecdotes, Codat had achieved an ISO 27001 certification and a SOC 2 report. Because ISO 27001 is a universally accepted standard, the certification helped Codat meet the compliance requirements of its international customers.

Similarly, a SOC 2 report demonstrated its dedication to meeting industry standards within its growing U.S. territory. However, in order to complete both ISO 27001 and SOC 2, Codat was spending a significant amount of time and resources managing its security and compliance posture.

By partnering with both BARR and anecdotes, Codat moved forward with its goal of continuing to complete a SOC 2 report and an ISO 27001 certification while reducing the time and effort needed to complete engagements.

We knew that partnering with both an audit firm who could report on ISO 27001 and SOC 2 simultaneously and a compliance automation provider would give us back time and allow us to focus on what we do best at work.

Josephine Robinson
Senior Information Security Manager

The Solution

In order to reduce the time and effort spent on audits, Codat needed an audit partner who could complete both ISO 27001 and SOC 2 reports through one engagement and, ultimately, become a long-term trusted advisor. After researching several other firms, Codat knew BARR was the right fit.

Automating the engagement process was also essential to Codat. As its established automation partner, anecdotes provided a platform that easily connected to Codat’s unique system to automate key parts of the engagement, including pre-mapped controls and evidence collection.

BARR helped Codat adjust its requirements for the newly released ISO 27001:2022 and explained the process for adding a SOC 2 report in a way that was easy to understand, mapping the controls Codat had in place to fit both reports. Throughout the engagements, anecdotes’ platform simplified the evidence collection process, which saved Codat time and led to massive improvements in its overall compliance journey.

Through our search for an auditor, BARR stood out among other firms as genuinely friendly and easy to work with. Our auditors leveraged their resources across audits to give us the compliance we need in less time. anecdotes provided us with unparalleled support through their subject matter expertise, which helped us tremendously as we switched to an automated compliance process.

Josephine Robinson
Senior Information Security Manager

The Results

Codat achieved a new level of compliance and significantly reduced the amount of time and resources spent on audits.

Through its partnership with BARR and anecdotes, Codat:

Reduced the amount of time spent on compliance audits;

Adhered to two of the highest-regarded frameworks, ISO 27001 and SOC 2;

Improved the compliance process through simplified evidence collection;

Increased customer trust and built upon a growing U.S. territory; and,

Gained a true partnership with trusted advisors and subject matter experts.

BARR’s friendliness made us want to continue working with them again and again, while anecdotes’ automation-focused platform allowed us to plug into software C programming and improve our features. Partnering with the two organizations on our compliance program led to big wins.

Josephine Robinson
Senior Information Security Manager

Contact Us for a Free Consultation

We’re here to help you!
Speak with a BARR specialist about your security and compliance needs.