FACES2 logo
Visiontech Consulting

Trust & Compliance

Secure, accountable, and compliance-ready technology for organizations operating in sensitive environments.

Visiontech Consulting is committed to building secure, responsible, and trustworthy technology for organizations that rely on identity authentication, access control, AI-enabled monitoring, and operational security systems.

SOC 2 Readiness In Progress NIST CSF 2.0 Alignment Drata-Supported Readiness Canadian Made
Request Compliance Information Platform Security & Privacy
Our Program

Compliance readiness in progress

Visiontech Consulting is actively advancing its compliance and security-readiness program with Drata, with a focus on preparing for an upcoming SOC 2 examination and aligning with the NIST 2.0 Cybersecurity Framework. This work supports Visiontech's commitment to governance, access control, secure development, risk management, incident response, vendor oversight, evidence collection, and ongoing control monitoring.

SOC 2
Readiness in progress

Actively preparing for an upcoming examination of our system based on the criteria set forth in DC 200, the 2018 Description Criteria for a Description of a Service Organization's System in a SOC 2 Report.

NIST CSF 2.0
Alignment underway

Aligning internal security practices with the NIST 2.0 Cybersecurity Framework to support stronger governance, asset awareness, protection, detection, response, and recovery capabilities.

Drata
In place since January 16, 2026

Using Drata's compliance automation software to prepare for NIST 2.0 and the upcoming SOC 2 examination, with continuous monitoring of our compliance posture to follow post-audit.

Drata is a security and compliance automation platform that continuously monitors and collects evidence of a company's security controls and streamlines audit-readiness workflows.

Status note. Visiontech is not currently representing that it has completed a SOC 2 audit unless and until a formal report is issued. Compliance-readiness documentation, including the Drata Letter of Assertion, may be made available to qualified customers and partners upon request.

In Practice

Current trust & security focus areas

Governance & Accountability

Defined ownership, policies, and oversight for security decisions.

Access Control & Permissions

Least privilege access and role-based permissions across systems.

Risk Management

Ongoing identification, assessment, and treatment of security risks.

Secure Product Development

Security considerations built into design, development, and release.

Vendor & Third-Party Oversight

Review and monitoring of the partners and services we rely on.

Incident Response Readiness

Defined procedures for detecting, escalating, and resolving incidents.

Evidence & Control Monitoring

Drata-supported evidence collection and continuous control monitoring.

Privacy & Data Protection

Responsible handling of identity, video, and operational data.

Responsible AI & Computer Vision

Human oversight and appropriate use-case design for AI systems.

Framework

SOC 2 readiness

SOC 2 is a widely recognized framework for evaluating controls related to security, availability, processing integrity, confidentiality, and privacy. Visiontech is actively preparing for an upcoming SOC 2 examination. When a formal SOC 2 report becomes available, Visiontech may share it with qualified customers, partners, and procurement teams under appropriate confidentiality terms.

Security Availability Processing Integrity Confidentiality Privacy
Framework

NIST 2.0 alignment

The NIST 2.0 Cybersecurity Framework provides a structured approach for managing cybersecurity risk. Visiontech is aligning its internal security practices with this framework to support stronger governance, asset awareness, protection, detection, response, and recovery capabilities.

01
Govern
02
Identify
03
Protect
04
Detect
05
Respond
06
Recover
The FACES2 Ecosystem

Platform security for security-conscious organizations

The FACES2 ecosystem is designed to support organizations that require stronger control over identity, access, monitoring, and response workflows. Across access control, identity authentication, AI video intelligence, and active incident management, FACES2 emphasizes secure system design, role-based access, operational oversight, and privacy-aware deployment practices.

Enterprise Government Education Healthcare Public Safety Defence-Adjacent Environments Critical Infrastructure High-Security Facilities
Access control and identity authentication
AI-enabled monitoring with operational oversight
Role-based permissions and secure system design
Customer-controlled deployments where applicable
Privacy-aware workflows and auditability
Support for high-security environments
Explore Platform Security & Privacy
Product Focus

FACES2 ID Authentication compliance

FACES2 ID Authentication is designed to support organizations operating in regulated and identity-sensitive environments. The platform is developed with awareness of identity verification, biometric performance, financial-services, and digital trust requirements across multiple jurisdictions. The references below are relevant frameworks, standards, and regulatory considerations, not blanket certification claims.

PCTF
Pan-Canadian Trust Framework

Canadian digital trust and identity ecosystem guidance that informs our identity verification workflows.

DIACC
Digital Identification and Authentication Council of Canada

Engagement with Canada's digital identity and trust community.

ISO/IEC 19795-1:2021
Biometric performance

Reference standard for biometric performance testing and reporting.

eIDAS
European Union

European regulation for electronic identification and trust services, relevant to cross-border identity workflows.

FINTRAC KYC
Canada

Canadian financial transaction and identity verification requirements. FACES2 ID supports related verification workflows.

FinCEN CDD
United States

U.S. customer due diligence requirements for financial institutions, relevant to onboarding and KYC workflows.

Identity Assurance Levels
IALs

Assurance concepts for identity proofing and authentication strength.

213+ Countries & Regions
Global ID document coverage

Supports verification workflows for government-issued IDs from 213+ countries and regions.

Explore FACES2 ID Authentication

Data protection & privacy

Visiontech designs its products with awareness of the sensitivity of identity, access, video, and operational security data. Our approach emphasizes controlled access, role-based permissions, privacy-aware workflows, and responsible handling of customer information.

Least privilege access and role-based permissions
Secure handling of sensitive and identity-related data
Privacy-aware product design and workflows
Controlled access to documentation and customer data protection
Readiness for customer and vendor security reviews

Responsible AI & computer vision

Visiontech recognizes that AI, biometrics, and computer vision systems must be deployed responsibly. FACES2 solutions are designed to support human oversight, operational review, appropriate use-case configuration, and security-conscious deployment practices.

Human oversight and operational review
Appropriate use-case design and configuration
Attention to accuracy, performance, and bias considerations
Auditability where applicable, with clear customer responsibility for deployment decisions
Responsible biometric and identity verification workflows
FACES2 logo

Need compliance documentation?

Qualified customers, partners, and procurement teams may request current compliance-readiness documentation, security questionnaires, the Drata Letter of Assertion, or supporting materials from Visiontech.

The Drata Letter of Assertion is available upon request. It describes compliance-readiness activities and is not a certification, audit opinion, attestation report, or SOC 2 report. Statements on this page describe readiness activities and design intent, not completed certifications or audits.