SOC is a suite of reports from the American Institute of Certified Public Accountants (AICPA) that CPA firms can issue in connection with system-level controls at a service organization. SOC 2 reports on various organizational controls related to the five categories of the Trust Services Criteria (TSC): Security, Availability, Confidentiality, Processing Integrity, and Privacy.