Case Study: Forage achieves SOC 2 and PCI Level 1 compliance while saving time and costs with Thoropass

Forage's multi-framework, single auditor approach delivers $100k savings and key client acquisition

Forage, a payment processor for government food assistance programs, faced the challenge of simultaneously achieving SOC 2 certification and Level 1 PCI DSS compliance. With a small team and a strict deadline, they needed a partner to help streamline these complex, multi-framework audits. They turned to Thoropass for its expertise and platform to manage the process efficiently.

Thoropass provided a unified solution, using a single auditor and platform to manage both compliance frameworks. This approach, aided by automated evidence collection and expert guidance, allowed Forage to complete both audits ahead of schedule. The results were significant: Thoropass helped Forage secure a key enterprise client, save over $100,000 in development costs, and avoid an estimated 3-6 months of engineering time through proactive design consultation.

Forage

Rob Gormisky

Information Security Lead