SOC and PCI

Canopy takes adherence to complying with industry laws and regulations seriously and considers it a core component of our business. Our partners rely on us to ensure we are complying with all applicable industry standards, and therefore, we have implemented formal compliance programs and processes to ensure ongoing compliance with these programs. In addition, Canopy undergoes annual SOC Type II and financial audits. Although not currently subject to the PCI Data Security Standards, as a further commitment to ensuring data security, Canopy has committed to becoming PCI-DSS compliant in Q4 2021.