GreenHill Investment Reporting is pleased to announce that it has once again successfully achieved SOC 2 Type II compliance, reinforcing its long-standing commitment to data security, operational integrity, and client trust.
The independent audit was conducted in accordance with standards established by the American Institute of Certified Public Accountants under SSAE 18. The resulting unqualified opinion provides third-party validation that GreenHill has designed and maintained effective controls to protect customer data within the GreenHill Investment Reporting System over an extended review period.
What SOC 2 Type II Compliance Means
SOC 2 Type II is widely regarded as one of the most rigorous assessments of a service organization’s control environment. Unlike a point-in-time assessment, a Type II report evaluates if controls are properly designed and whether they operate effectively over time. This distinction is particularly important for organizations entrusted with sensitive financial and investment data.
Achieving SOC 2 Type II compliance demonstrates that GreenHill has established a mature control environment aligned with the Trust Services Criteria, including security, availability, and confidentiality. The controls in place are continuously maintained and reflect a disciplined approach to safeguarding client data and supporting the operational requirements of regulated financial institutions.
Independent Validation
GreenHill’s SOC 2 Type II audit was performed by The Moore Group, an independent CPA firm specializing in assurance and compliance services. Their assessment confirmed that GreenHill’s control framework meets the stringent standards required for SOC reporting and that those controls functioned effectively throughout the audit period.
Receiving an unqualified opinion affirms that GreenHill’s policies, procedures, and systems are operating as intended, with no material exceptions identified.
Why This Matters to Clients
GreenHill serves banks, trust departments, wealth managers, and investment advisors who operate in highly regulated environments and who are themselves accountable for data governance, fiduciary oversight, and operational risk management. For these organizations, vendor security and compliance are not optional. They are foundational.
SOC 2 Type II compliance provides GreenHill’s clients with independent assurance that their data is managed with a high standard of care. It also supports vendor due diligence, internal risk assessments, and regulatory examinations by demonstrating that GreenHill’s control environment aligns with enterprise expectations.
This achievement is particularly meaningful for institutions subject to regulatory scrutiny, where documentation, consistency, and third-party validation play an important role in examiner reviews.
A Continued Commitment to Trust and Security
At GreenHill, security and compliance are not viewed as one-time milestones. They are ongoing responsibilities that evolve alongside client needs, regulatory expectations, and the broader threat landscape. SOC 2 Type II compliance reflects years of disciplined investment in internal controls, risk management practices, and operational governance.
GreenHill will continue to maintain and enhance its control environment to ensure that clients can rely on the integrity, availability, and confidentiality of their performance reporting data.
About GreenHill Investment Reporting
GreenHill Investment Reporting is an independent provider of investment performance measurement, reporting, and analytics for banks, trust departments, RIAs, and wealth managers. GreenHill specializes exclusively in performance reporting, delivering accurate, flexible, and defensible results supported by experienced professionals and trusted processes.
For clients seeking confidence in both performance data and the systems that support it, SOC 2 Type II compliance represents another step in GreenHill’s ongoing commitment to excellence.