SOC 2 report access instructions (sanitized demo sample)

Third-party reports (SOC 2 Type II, pen test summaries) are often agreement-required.
This sample does not include reports.

Recommended pattern:
- Share the report via an agreement-required tier (NDA + time window).
- Log access events (who accessed what and when).
- Provide a reviewer-friendly summary first: scope, period, auditor, and any noted exceptions.

If you are a reviewer requesting a report:
- Confirm the report name and period needed.
- Confirm your legal contact for agreement execution.
- Request a time-boxed access window and a point of contact for follow-ups.
