Evidence

Evidence stores the artefacts that demonstrate each SOC 2 control is operating -- screenshots, logs, policies, approvals and configuration exports -- linked to the control they support. It turns scattered proof into an organised, auditor-ready pack. Compliance teams maintain it ahead of and during a SOC 2 examination.

Evidence
Evidence — live screen from the BridgeERP MFI Suite.

Workflow

  1. Open MFI > Configuration > Tools > SOC 2 > Evidence
  2. Click New and link the evidence to a control
  3. Attach the supporting artefact and describe it
  4. Set the collection date and responsible owner
  5. Maintain the set so it stays current for the audit window

Fields reference

Every field on this screen, drawn from the live data model.

FieldTypeRequiredDescription
Website Messages
website_message_ids
ListWebsite communication history
Control
control_id
Link → mfi.soc2.controlYesControl
Has Message
has_message
Yes/NoHas Message
Ratings
rating_ids
ListRatings
Code
control_code
TextCode
Tsc
tsc
Choice: Common Criteria, Availability, Confidentiality, Processing Integrity, PrivacyTsc
Collected At
collected_at
Date & timeCollected At
Period Start
period_start
Date & timePeriod Start
Period End
period_end
Date & timePeriod End
Ok
ok
Yes/NoOk
Summary
summary
TextSummary
Payload Json
payload_json
Long textPayload Json
Payload Html
payload_html
Rich textPayload Html

Notes & rules

  • Model mfi.soc2.evidence -- control evidence
  • Key fields: control, artefact, owner, date
  • Related: Controls, Audit Logs, Support Sessions
  • Used by compliance and security teams

Technical model: mfi.soc2.evidence · Record: SOC 2 evidence record

Was this page helpful?