Integrate with Drata

Drata is the fastest and simplest way to achieve and maintain continuous SOC 2 compliance. They automate compliance operations, control monitoring, and perform evidence collection with integrations across your SaaS services. Here are some examples of controls that Drata helps with:

• Unique email accounts
• Becoming a single source of truth for your hire and separation dates, and their related onboarding and offboarding controls. 
• System access control SLAs (e.g., when do individuals' access get revoked in relation to their separation date)

What’s SOC 2?

SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization and the privacy of its clients. Drata will show users the tests they run against the SOC 2 framework and how it maps to the controls. If a user fails the test, Drata informs them of why, what was incorrect, and how to fix it.

Gusto syncs your personnel data to Drata to assist with the automated test suite for SOC 2 compliance. Drata will be able to determine employment statuses of employment and ensure that you maintain alignment across your organization with regards to security and privacy. 

Customers who join Gusto from Drata will receive Gusto free for their first 3 months.

Connect to Gusto from Drata

1. Sign in to Drata.
2. Click the dropdown arrow next to the company name at the top of the screen.
3. Click Connections.
4. Scroll to the “HRIS” section.
5. If you have an existing Gusto account, click Connect in the Gusto tile. New users can click Join Now to get started.
   • If you’re a new user: Drata will send your first name, last name, email, and company name to Gusto. Look for an email with next steps to complete the setup of your Gusto account.
6. Read the instructions to connect, then click Connect to your Gusto account.
7. Complete the security check.
8. Enter your Gusto sign-in credentials and click Sign In.
9. Select which companies you’d like to authorize, and click Authorize.
   • You’ll be redirected back to Drata.
10. Determine which of the authorized companies you’d like to connect with.
11. Click Submit. 
12. To verify the connection, click Personnel in the left-menu.

You should see the name of Gusto employees, and Drata’s determination of employment status.

Integration details

A syncs occurs daily at 7pm PST to pull in the latest personnel data for employees and contractors.

• If a previously imported employee has changes made in Gusto, those changes will be reflected in Drata at the next sync.
• New employees and contractors added to Gusto will also be captured during the next sync. 

Gusto is the single source of truth for data, this means:

• Drata only pulls in data as it exists in Gusto. 
• Information from Gusto cannot be edited in Drata.
• Gusto will not update to reflect changes made in Drata.

Disconnect Gusto and Drata

1. Sign in to Drata.
2. Click the dropdown arrow next to the company name at the top of the screen.
3. Click Connections.
4. Scroll to the “HRIS” section.
5. Click Disconnect in the Gusto tile.

Still need help? 

Check out Drata's Help Center or contact them directly at [email protected].