Raising the Bar on Trust and Security  

By Dwayne Masters, CISSP | AVP, Infrastructure & Cybersecurity 

Introducing the Selerix Trust Center and Our Latest SOC 2 Type II Report 

At Selerix, trust isn’t a slogan we tack onto the end of a slide, it’s the standard we hold ourselves to every single day, and part of our commitment to serving our customers and their employees. That’s why I’m excited to share two important milestones in our security and compliance journey: 

• The launch of the new Selerix Systems Trust Center 
• The successful completion of our latest SOC 2 Type II audit for the BenSelect (BST) platform, with zero exceptions 

Together, these give our clients, partners, and brokers deeper transparency into how we protect their data and run our systems. 

A Single Source of Truth: The Selerix Systems Trust Center 

Our new Trust Center is designed to make it easier and faster for you to get the information you need about our security and compliance posture. 

From one place, you can: 

• View high-level information about our security, privacy, and availability controls 
• Request access to detailed documentation, including SOC 2 reports 
• Complete NDAs through an automated workflow that ties directly into our client database 
• Subscribe to notifications when key documents are updated 

Instead of chasing emails or wondering whether you have the latest version of a report, you get a living, always-current hub for Selerix security and compliance information. 

SOC 2 Type II, Zero Exceptions: What That Really Means 

We recently completed our latest SOC 2 Type II audit for the BenSelect (BST) platform, with no exceptions noted. 

Here’s what went into that achievement: 

• A 5–6 month audit period covering the real-world operation of our controls 
• Review of 200+ pieces of evidence, from policies to system logs and process artifacts 
• Independent validation of our control environment across key areas, including: 
  • Governance and risk management 
  • Logical security and access control
  • System monitoring and alerting 
  • Backup and recovery 
  • Incident response 

A Type II report is not a point-in-time snapshot. It evaluates how consistently those controls operated over the entire audit period. A “zero exceptions” result tells you that the controls we say we have in place are not only designed well — they’re working as intended, day in and day out. 

For our clients, that translates to greater confidence that: 

• Access to sensitive data is restricted and audited 
• Systems are monitored for anomalies and potential misuse 
• We have documented, tested processes for recovery and incident handling 
• Our internal teams are following the same playbook our policies describe 

Expanding SOC 2 Coverage Across the Selerix Family 

This year’s report focuses on the BST product, but our goal is unified, standardized assurance across our entire platform. We’re already moving in that direction with our recently acquired companies 

• Formerly TBX and Steele Benefits  
  • SOC 2 readiness reviews are underway 
  • Our aim is to complete those readiness efforts by the end of Q1 2026 
  • We plan to bring these products into our next annual SOC 2 Type II review cycle 
     

• Formerly SyncStream 
  • Will complete a SOC 2 Type I review as an important first step 
  • From there, we’ll continue working toward full alignment across all Selerix offerings 
      

The objective is simple: regardless of which Selerix product you use, you should have consistent, independently validated assurance around the controls that protect your data. 

How to Access Our SOC 2 Reports 

All current and future SOC 2 reports will be distributed through the Selerix Systems Trust Center. 

If you’re a client, prospect, or partner, you can: 

1. Visit our new Trust Center

2. Complete the short access request (including automated NDA where required) 

3. Download the latest reports and supporting documentation 

4. Opt in to updates so you’re notified when new versions are available 

If you prefer a more guided walkthrough, our team is happy to help interpret the report and explain how our controls map to your own internal requirements. 

Our Commitment Going Forward 

For Selerix, security is a culture and a set of daily habits — from how we design systems, to how we manage change, to how we respond when something doesn’t look right. We don’t wait for an audit, but are always thinking of how we can raise the bar for transparency and trust. 

The Trust Center and our latest SOC 2 Type II achievement are milestones on that path, not the finish line. We’ll keep investing in: 

• Strong, independently verified controls 
• Greater transparency for clients and partners 
• Continuous improvement of our governance, risk, and security practices 

On a personal note, I want to thank every Selerix team involved in this year’s audit, from engineering and operations to compliance and client services. Zero exceptions is the result of a lot of quiet, meticulous work behind the scenes. 

If you have questions about our security practices or need help accessing the Trust Center, you can always reach us at compliance@selerix.com. 

We take the responsibility of safeguarding your data seriously. Thank you for trusting Selerix. 

Looking to learn more about Selerix and our solutions? Contact us today to schedule a free demo and see how we put the security and wellbeing of customers and their employees first in everything we do.