Our Products & Services
Getting Started
First Time Setup
Getting Started With Jobs
Getting Started with Accounts
Getting Started with Inventory
Getting Started with Ticketing
Setting Sonar up for Billing
Baseline Configuration
How To: Using Sonar's Customer Portal
User Specific Resources
Accounts
Account Groups: Overview & Example Use Cases
Account List View: Overview
Account Management View: Overview
Account Overview Customization
Account Statuses: Overview & Example Use Cases
Account Types: Overview & Example Use Cases
Anchor & Linked Serviceable Addresses: Overview and Best Practices
Archiving an Account: Overview
CPUC Fixed Broadband Deployment by Address
Child Accounts: Best Practices & How Tos
Creating a New Account
Direct Messages: Overview
Disconnecting an Account
Disconnection Reason Management: Overview
Exploring Task Groups
FCC Broadband Data Collection (BDC) Filings: How Sonar Can Help
FCC Data Exports: General Overview and Usage
Future Serviceable Addresses: Overview
Lead Intake Form Processing
Notes: Best Practices & Use Cases
Scheduled Events: Overview & Use Cases
Serviceable Addresses: Overview and Usage
Specify Account ID upon Creation
Tasks & Task Templates: Overview
Using Sonar's FCC Broadband Label Generation Tool
Billing
ACH Batching: Overview
Accounts in Vacation Mode
Avalara: Overview & Setup
Batch Payments & Deposit Slips: Overview
Billing Calculator
Billing Defaults
Billing Settings
Building Packages
Building a Data Service
Canadian ACH tool
Changing Service Pricing in Sonar: Best Practices
Configure Service Eligibility Criteria: Overview
Considerations When Using Avalara with Voice Services
Creating Discounts for Services and Packages
Delinquency Billing Best Practices
Delinquency Exclusions: Overview
Dual Data Services: Overview
Email Invoice Batch: Overview
General Ledger Codes: Overview
General Transactions: Best Practices
How Sonar Prorates Billing
How to Take Bank Account Payments
How to Use SKUs: Overview
How to: Adding a Service to an Account
Invoice Templates: Overview
Leveraging PayPal as a Payment Method in Sonar
Manual Transactions
Multi-Month Billing & Multi-Month Services
Print to Mail
Printed Invoice Batches: Overview
Reversals and Refunds: Overview
Services: Overview
Setting Up Payment Methods and Taking Payments
Setting up Bank Account & Credit Card Processors
Taxes Setup
Usage Based Billing Policies: Overview and Usage
Usage Based Billing Policy Free Periods: Overview and Usage
Using Tax Exemptions - How To
Communication
Communications: Call Logs Overview & Best Practices
Communications: Messages Overview
Email Variables & Conditions
Message Categories: Overview & Use Cases
Phone Number Types: Overview and Use Cases
Saved Messages: Overview
Setting up an Outbound Email Domain
Trigger Explanations
Triggered Messages: Setup
Using Outbound SMS
Using the Mass Message Tool
Companies
How to: Setting Up a Company in Sonar
Managing Multiple Companies in Sonar: Best Practices
Rebranding your Sonar Instance
Field Tech App
Financial
Agreement Templates
Invoice Attachment Use Cases & PDF Examples
Invoice Messages: Overview & Use Cases
Invoices in Sonar: Examples, Creation & Contents
Integrations
Atlas Digital CORE Integration
Calix Cloud Data Field Mappings
Calix SMx Integration: Overview
CrowdFiber Integration
External Marketing Providers
GPS Tracking Providers: Overview
GoCardless Integration: Overview & Setup
Handling Static IPs with the Calix SMx Integration
How to Connect Cambium to your Sonar Instance
How to Connect Preseem to your Sonar System
How to: Using Webhooks in Sonar
Integrating with Calix Cloud
RemoteWinBox - Integration with Sonar
Sonar Retain: AI-Powered Customer Retention & Quality Intelligence
Tower Coverage Integration: Overview
VETRO FiberMap V2 Integration: Overview
VETRO FiberMap V3 Integration: Overview
Webhook Events: Overview
Webhooks in Sonar: Basic PHP Example
iCalendar Integration
Inventory
Inventory List View: Overview
Inventory Model Management: General Overview
Network Inventory: How-to & Usage Guide
Segmentable Inventory: How-to & Usage Guide
Setup of Inventory: Manufacturers, Categories, and Assignees
Tracking and Using Consumable Inventory
Jobs
Applying Task Templates to Jobs
Edit Job Options
Example Jobs & Templates
Geofences: Overview
Job Types: Best Practices
Jobs and Scheduling: Overview
Scheduling Dispatcher View: Overview
Scheduling How-to: Creating and Booking a Job
Scheduling Table View: Overview
Scheduling Week View: Overview
Setting Up Schedules General Overview
Mapping
Misc.
Combining Custom Fields & Task Templates for Information Storage
Custom Fields Overview & Use Cases
Custom Links: Overview
Task Templates Overview & Use Cases
Monitoring
Building Alerting Rotations
Building a Monitoring Template
Poller Troubleshooting
Pollers: General Overview, Deployment Strategy, Build Out & Setup
Networking
Adtran Mosaic Cloud Platform Integration: Overview
Assigning RADIUS Addresses
Assigning an IP Address Using Sonar's IPAM: How to
Automating IP Assignments, Data Rates, and Network Access in Sonar
Building Address Lists
Building RADIUS Groups
Building a Device Mapper
Cable Modem Provisioning
Controlling Customer Speeds with Sonar: General Overview
DHCP Delivery
Data Usage Available Methods
Finding your OIDs
FreeRADIUS 3: Build-Out & Integration
How Sonar Communicates - Egress IPs Explained
IP Assignments & Sonar
IPAM: Basic Setup
IPAM: Overview
LTE Integration
MikroTik as an Inline Device: Integration With Sonar
MikroTik: Controlling Access
MikroTik: Controlling Speeds
MikroTik: Setting Up a Sonar Controlled DHCP Server
Netflow On-Premise Integration: Setup and Overview
Network Dashboard: Overview
Network Sites: Management View Overview
PacketLogic: Integration With Sonar
Pulse, Polling, and PHP
RADIUS: Build-Out & Integration with Sonar
RADIUS: Building Reply Attributes
Setting Up CoA Proxy
Sonar Flow
Sonar IP Addressing
Using Multiple Network Devices in Sonar
Purchase Orders
Release Notes
Reporting
Common Custom Report Uses
Enhanced Business Intelligence - Tips & Tricks for Advanced Users
How To Enhance Your Reporting With Custom Field Data
How to Unpublish a Report or Dashboard
Managing Scheduled Reports
Report Licenses
Reporting Time Zone Behavior
Sonar's Business Intelligence: Overview
Understanding Sonar Reports
Using Sonar DataConnect to Connect BI Applications with Your Sonar Instance
Security
Application Firewall: General Overview and Best Practices
Auth0: Overview
Multi-Factor Authentication: Overview
Password Policy In Depth
Removing a Terminated Employee In Sonar
Role Creation using GraphiQL
User Role Creation & Best Practices
Users: Overview
Sonar Billing
sonarPay
How to Find Your Processing Rates in the sonarPay Portal
Reconciling sonarPay Disbursements with Bank Deposits
What to Expect After sonarPay Enrollment
sonarPay Canada Disbursements: Overview
sonarPay Chargebacks & Disputes: Overview
sonarPay Disbursements: Overview
sonarPay Migration: Approving Your Match & Going Live
sonarPay Migration: The Token Transfer & Matching Process
sonarPay Monthly Statement: Overview
sonarPay Overview
sonarPay Reversals, Voids, & Refunds: Overview
sonarPay: Token Migration Process
System
A Deeper Dive into the New Sonar API
API Calls Using Third Party Applications: Personal Access Tokens
Browser Compatibility and Minimum Hardware Requirements for Sonar
Consuming the Sonar API
Controlling Your Landing Page: Personal Preferences
Customizing Your Customer Portal
Date/Time Picker: Overview
Dynamic Time Zones in Sonar
Filtering: Overview
Frequently Used Terms
Getting Your Data into Sonar
GraphQL Rate Limiting Overview
How To Use GraphiQL to Understand the Sonar API
How Your Data is Backed Up
How to Best Use Global Search
Interacting with Files via the API
Introducing the New Sidebar
Main Menu: Overview
Mutations in the Sonar API
Notification Preferences
REST API Wrappers for V1 Compatibility
SMS Notifications
Sonar's Rich Text Editor
System Settings: Overview
The New Sonar API
Troubleshooting the Customer Portal
Upgrading your Ubuntu OS - Customer Portal Upgrades
User Profile: Your Personal User Settings
View History & All Logs: Overview
Ticketing
Advanced Ticketing Features
Canned Replies Examples & Templates
Canned Reply Categories
Exploring Ticket Groups
How Sonar Manages Spam Tickets
How to Integrate Inbound Mailboxes with Slack
Inbound Mailboxes Example Build
Ticket Category Families & Ticket Categories: Overview
Ticket Resolution Reasons: Overview
Ticketing: Overview
Using Parent Tickets
Voice
API Changes for Voice Billing
Best Practices to Remain CPNI Compliant
Billing Voice Services in Sonar
Deploying Voice Services in Sonar
Working With the Sonar Team & Additional Resources
Sonar's Security Practices & Certifications
Security & Compliance
Sonar and General Data Protection Regulation (GDPR)
Technical Security Overview
Best Practices for Fast Tracking a Support Request
Feedback Portal / Suggest a Feature
Learning with Sonar: Tools and Resources
New Client Training Overview
Sonar Casts Table of Contents
Submitting Bugs vs. Feature Requests
The Sonar Community Forum
The Sonar Status Page
Third Party Customer Support Referrals
Where Sonar Stores Your Data
Table of Contents
Security & Compliance
Read Time: 3 mins
Sonar's Security Strategies
Security is at the core of how Sonar operates. We give ISPs a platform built to protect their data, with industry-standard safeguards and continuous monitoring around the clock.
This article covers how Sonar protects your data and what we expect from you as a security partner. For audit reports, certifications, and compliance documentation, visit the Sonar Trust Center.
Compliance and Certifications
Sonar holds a SOC 2 Type 2 certification, independently audited and unqualified, confirming our security controls were designed appropriately and operated effectively across real workflows throughout the review period.
Our cloud infrastructure also meets stringent international and industry-specific standards, including SOC 1, SOC 2, GDPR, HIPAA, FedRAMP, and CSA STAR, each verified through independent third-party audits.
To request current certifications and reports, visit the Sonar Trust Center.
Security in the Cloud
Sonar hosts your data with established cloud providers in regional, mission-critical data centers designed with multiple layers of redundancy and protection:
- Fully redundant subsystems.
- Compartmentalized security zones.
- Multi-factor and biometric authentication options.
- 24/7 surveillance by dedicated security personnel.
Data Encryption and Secure Connections
Sonar protects the confidentiality and integrity of data in transit and at rest using encryption standards appropriate to data sensitivity and risk.
- In Transit: Data is encrypted using TLS 1.2 or higher.
- At Rest: Data is encrypted with AES 256-bit encryption.
- Geographic Residency: Flexible data residency options are available.
- Tokenization: Sensitive payment data is tokenized for added security.
Network Security
Sonar manages and protects its network infrastructure across cloud and application layers, with controls implemented to restrict unauthorized access, segment systems by risk, and protect communications between trusted and untrusted networks.
- Network security groups (NSGs) controlling inbound and outbound traffic at the network and transport layers across Azure VNets.
- Network segmentation applied based on risk, data sensitivity, and system architecture.
- Zero Trust access controls via Cloudflare, including identity-aware application access, traffic policy enforcement, and data loss prevention.
- Identity threat detection and response (ITDR) monitoring for suspicious access patterns and credential-based threats.
- Centralized logging and monitoring for security events across the platform.
- Network configuration changes managed through approved change management procedures.
Access Controls and Data Governance
Sonar's platform uses granular, role-based permissions so you control who can do what:
- User Roles: Group permissions define which actions users can perform.
- Permissions: Permissions are customizable within each module.
- Modules: Functional areas of the platform are managed independently.
Our Shared Security Partnership
Security is a shared responsibility. Sonar connects to your technology environment, so keeping your instance secure depends on both of us.
Your responsibilities:
- Secure your database access (for example, IP whitelisting, TLS encryption, SSH tunneling).
- Apply restrictive user permissions within your Sonar instance.
Sonar's responsibilities:
- Maintain code quality and secure development practices.
- Run continuous monitoring and vulnerability scanning.
Corporate and Product Security
Security is embedded at every layer of our organization and product development lifecycle.
Corporate Security
- A dedicated Information Security team, led by the Information Security Manager.
- Security policies reviewed and approved by leadership.
- Background checks for all employees.
- Regular security training for all staff.
- 24/7 monitoring, with Security and DevOps teams on-call for immediate response.
- A comprehensive, regularly tested incident response plan.
Product Security
- Peer-reviewed code and a secure software development lifecycle.
- Automated testing for injection flaws, input validation, and CSRF token usage.
- Regular penetration testing to identify and mitigate vulnerabilities.
- Multi-layer authentication for back-end system access.
- Logging and monitoring for all access and anomalies.
How Sonar Uses Data and Monitors Systems
Sonar uses first- and third-party tools to improve the platform and support your use of it:
- Usage Analytics: Helps us improve the platform based on how it's used.
- Configuration Backups: Encrypted and stored securely for redundancy.
- Error Reporting: Internal systems collect runtime data to diagnose issues.
- In-Product Messaging: Delivers personalized, pseudonymized guidance.
Related Articles
- Sonar Trust Center — request access to current certifications, SOC 2 reports, and compliance documentation.
