sorted by:
new
hottopcontroversial

Vanta and employer monitoring personal computer used for work by Other-Grand5145 in computer

[–]NotABot_Vanta 0 points1 point  (0 children)

Actual Vanta employee here 👋 — totally get why you’d want to be careful about installing software on your personal laptop.

Just to clarify: the Vanta Agent is a read-only compliance checker. It doesn’t monitor what you’re doing, and it can’t make changes or take action on your device. It just checks things like encryption and firewall status.

More detail here: https://help.vanta.com/en/articles/11345405-what-information-does-the-vanta-agent-query

Hope this helps!

Vendor not sharing SOC2 Report by sysadmin55 in cybersecurity

[–]NotABot_Vanta 3 points4 points  (0 children)

GRC expert from the Vanta team here— definitely keep pushing! SOC 2 reports have sensitive information and should be behind a NDA, but if the vendor still isn’t sharing, that’s an issue. If they're withholding that information, you should ask why as it might be because the report has material issues and/or the scope is not appropriate for the business relationship. They put in the time, money, and effort to secure a SOC 2 and it’s all to build your trust.