SOC 2 Trust Center
Last updated May 19, 2026.
MenuPi operates an information security program aligned to the AICPA Trust Services Criteria. This page summarizes the current state of our SOC 2 readiness and how to request our latest report.
Trust Services Criteria Covered
MenuPi designs and operates its security program against the AICPA Trust Services Criteria so customers can rely on consistent controls across hosting, application code, and the people who maintain them.
Our program is designed to address the Security, Availability, and Confidentiality criteria of the AICPA Trust Services Criteria.
- Security — protect against unauthorized access (logical and physical).
- Availability — system is available for operation and use as agreed.
- Confidentiality — information designated as confidential is protected.
Audit Cadence
A SOC 2 Type II observation window of 12 months is in progress, audited by an independent CPA firm. We refresh the report annually.
How to Request the Report
Customers and prospects under NDA can request a copy of the latest SOC 2 report by emailing legal@menupi.com. Reports are shared via a secure portal.
Status and Incidents
Real-time platform availability is published at status.menupi.com. Past incidents and post-mortems are listed there.
Security Contact
Vulnerability reports and security questions should be sent to security@menupi.com. For everything else, email legal@menupi.com.
This document explains how MenuPi handles your data and obligations as a service provider. It is informational and does not constitute legal advice. For tailored guidance, consult counsel.