DashLX Achieves SOC 2 Type II Attestation: What It Means for Athletic and Outdoor Brands

Author: Adam Nash

Published: June 22nd, 2026

DashLX is a Lived Experience Data platform that connects wearable and activity data from fitness platforms including Garmin, Strava, Apple, Fitbit, Coros, Polar, Suunto, and Wahoo, into brand CRM, CDP and Experience Management systems. Athletic and outdoor brands use DashLX to power activity-based rewards and lifecycle marketing, and to capture real-world performance data for wear testing and product innovation.

As of May 2026, DashLX is officially SOC 2 Type II attested.

For brands evaluating DashLX, whether for CRM and CDP activation, wear test programs, or research partnerships, this is a meaningful development. Here's what it means and why it matters.

  1. What SOC 2 Type II Attestation Actually Means.
  2. Why SOC 2 Type II Attestation Matters for Athletic and Outdoor Brands.
  3. What This Means for Brands Already on DashLX.
  4. Frequently Asked Questions.
  5. Security Is Part of How DashLX Builds.

What SOC 2 Type II Attestation Actually Means

SOC 2 is an independent security audit framework developed by the American Institute of CPAs (AICPA). It evaluates how a company handles customer data across five trust principles: security, availability, processing integrity, confidentiality, and privacy.

Type II is the more rigorous designation. Building upon Type I, which is a point-in-time snapshot, SOC 2 Type II assesses whether security controls are operating consistently over an extended review period. It's not a checkbox. It's verified evidence that security practices are embedded into how DashLX actually operates, every day.

The distinction matters for enterprise procurement: Type I tells you the controls exist; Type II tells you they work.

Why SOC 2 Type II Attestation Matters for Athletic and Outdoor Brands

DashLX serves two distinct types of enterprise programs, and SOC 2 Type II attestation is relevant to both.

For marketing and loyalty teams, DashLX connects opted-in athlete activity data into CRM and CDP systems to power rewards, personalization, and lifecycle triggers. For product and research teams, DashLX captures real-world performance data from wear testers and research participants to validate product development decisions.

In both cases, you're handling sensitive data from real people. That data needs to be treated with care.

DashLX's SOC 2 Type II attestation means:

Your participants' and customers' data is protected. DashLX has verified controls around how athlete data is accessed, stored, processed, and transmitted, whether that's a loyalty member's run history or a wear tester's biomechanical data.

Your procurement and security teams will have what they need. Enterprise brands regularly require SOC 2 attestation before signing with a data platform. DashLX now meets that bar. You can review DashLX's full security posture at trust.dashlx.com.

You can move faster through security review. SOC 2 Type II documentation is available to share with your InfoSec team on request.

DashLX is built to scale with you responsibly. As your program grows with more users, more platforms, and more data, DashLX's security posture grows with it.

What This Means for Brands Already on DashLX

For marketing teams at brands like Brooks, HOKA, and Scott Sports already running activity-based rewards and lifecycle programs on DashLX: your trust in the platform is well-placed.

For product and research teams at brands like PrimaLoft, New Balance, and Saucony using DashLX for wear testing and real-world performance data collection: the same applies. The data your testers and participants generate is handled with the same verified security controls and this attestation makes that official.

SOC 2 Type II formalizes what DashLX has been committed to from day one.

FAQs

Is DashLX SOC 2 compliant?

Yes. DashLX is SOC 2 Type II attested, meaning an independent auditor has verified that DashLX's security controls operate effectively over time — not just at a single point in time. You can review DashLX's security documentation at trust.dashlx.com.

What is the difference between SOC 2 Type I and Type II?

SOC 2 Type I evaluates whether security controls are designed appropriately at a specific moment in time. SOC 2 Type II goes further — it assesses whether those controls are actually working consistently over an extended review period. Type II is the more rigorous and widely recognized standard in enterprise procurement.

What is the difference between SOC 2 attestation and SOC 2 certification?

SOC 2 uses the term "attestation" rather than "certification." An independent CPA firm attests that a company's security controls meet the AICPA's SOC 2 Trust Services Criteria. The terms are often used interchangeably in procurement conversations, but "attestation" is the technically accurate designation under the AICPA framework.

Does DashLX have a SOC 2 report available?

Yes. DashLX can share SOC 2 documentation as part of a security review. Visit trust.dashlx.com or reach out to the DashLX team to request it.

How does DashLX handle wear test and research participant data?

DashLX captures opted-in wearable and activity data from wear testers and research participants via platforms like Garmin, Strava, Apple, Coros, Fitbit, Polar, and Suunto. That data is handled under the same verified security controls that govern all DashLX data — confirmed by SOC 2 Type II attestation.

How does DashLX handle athlete and customer data?

DashLX connects opted-in wearable and activity data from platforms like Garmin, Strava, Apple, Fitbit, Coros, Polar, Suunto, and Wahoo into brand systems for marketing, loyalty, wear testing, and product research use cases. Data handling is governed by verified security controls, and SOC 2 Type II attestation confirms those controls meet industry standards.

What wearable platforms does DashLX integrate with?

DashLX integrates with Garmin, Strava, Apple, Fitbit, Coros, Polar, Suunto, and Wahoo. Athlete and participant data from all connected platforms is handled under the same SOC 2 Type II-attested security controls.

What security certifications does DashLX have?

DashLX is SOC 2 Type II attested. This is the primary security certification relevant to enterprise data platform partnerships. Full documentation is available at trust.dashlx.com.

Can DashLX pass enterprise security review?

Yes. DashLX's SOC 2 Type II attestation is specifically designed to satisfy enterprise procurement and InfoSec requirements. DashLX can provide documentation to support your security review process. Start at trust.dashlx.com.

Security Is Part of How DashLX Builds

This milestone didn't happen overnight. It reflects deliberate decisions made throughout DashLX's architecture, data pipelines, and team practices. Security isn't a layer added at the end. It's part of how DashLX designs and ships.

Visit trust.dashlx.com to review DashLX's security posture, or contact the DashLX team to request the SOC 2 report as part of a security review.

Topics:

Product Announcements

Similar Articles

Article
Brand Loyalty
How to Measure, Optimize, and Maximize CLV for an Experiential Loyalty Strategy

It’s not the budget. It’s the blind spots. Most loyalty programs don’t fall short because of funding, they stall because they’re built on half the story.

Guide
Download The Experiential Loyalty Playbook

Rethink how your brand builds loyalty. Discover how to create emotional connections and drive measurable ROI with cross-functional strategies powered by AI-driven customer insights, real-time analytics, and zero-party Lived Experience Data.

Article
Brand Loyalty
How to Improve Loyalty Programs with Lived Experience Data

Has someone ever started talking to you in the grocery store or on the street, but you knew there was an incoming sales pitch?