In Contrast to quite a few compliance regulations, SOC compliance is typically not mandatory to operate inside a provided field like PCI DSS compliance is for processing payment card info. Normally, corporations require a SOC audit when their buyers request 1. Formally attest your compliance. An AOC (attestation of compliance) https://www.nathanlabsadvisory.com/blog/nathan/why-usa-businesses-rely-on-our-software-performance-testing-services/