How It Works
Products
- - Cloud
    
    Document Generation Software as a Service
    
    Running on AWS, the Cloud service is distributed over multiple geographic regions and scales under load to provide a fast, high-availability and reliable document generation service.
    
    Why Cloud?
    
    Nothing to download, install or run. Prices from $49/mth.
    
    Explore Cloud
  - Tornado
    
    A Self-Hosted, Stand-Alone Engine
    
    Download and run Tornado on Linux, Windows, or using a containerized approach such as Docker. Suitable for use in private data centers or host using public cloud services like AWS/Azure.
    
    Why Tornado?
    
    Integrate with custom-built software via simple REST API.
    
    Explore Tornado
  - Docmosis-Java
    
    A Java Library with Unique Architecture
    
    A high-performance Java library for adding template-based document generation to Java applications, with the ability to distribute processing load and isolate library dependencies.
    
    Why Docmosis-Java?
    
    Use with an approved Java stack for internal requirements.
    
    Explore Docmosis-Java
  Product Comparison
  
  The key difference between each product is how it is hosted, integrated and licensed.
  
  Compare All Document Generation Software Products
Pricing
More
- Column 1
- Column 2
  - - The API
      
      Learn about the Docmosis API and the key differences between each product. Designed to be used from:
      
      Custom software applications.
      
      Third-Party and No/Low Code platforms.
      
      Learn About the API
    - Integrations
      
      Explore the ways to integrate Docmosis with your custom-built software applications or add it to your workflows using popular third-party apps.
      
      Embed and/or distribute Docmosis with your applications
      
      Use Docmosis as a service via a simple REST API
      
      Search Integrations
    - Document Gallery
      
      A showcase of business documents that highlight the versatility of Docmosis. Examples of personalized and customized:
      
      Letters
      
      Invoices
      
      Statements
      
      Contracts
      
      Proposals
      
      Reports
      
      View The Gallery
    - Resources Website
      
      The fastest way to find answers is with the articles on the Resources Website.
      
      Search by keyword or browse by category:
      
      Articles to help with Getting Started
      
      Download the Latest Software
      
      Find version specific Documentation
      
      Experiment with Code Samples
      
      Search the technical FAQ
      
      Learn from the Template Tutorials
      
      Visit the Resources Website
    - How Support Works
      
      Support is available:
      
      During your free trial.
      
      Licensed products – support is included for the first 12 months with the option to extend.
      
      Cloud accounts – with an active subscription.
      
      Submit a Ticket
    - About Us
      
      Founded in 2013, Docmosis has grown in to a small vibrant software company that offers both self-hosted and cloud-based document generation solutions to its international client base.
      Read More
    - Reviews & Case Studies
      
      Startups to SMEs to global corporations rely on Docmosis to generate business-critical documents. View a selection of:
      
      Case Studies
      
      Customer Reviews
      
      Read Reviews & Case Studies
    - News & Blog
      
      Stay up-to-date with what’s going on at Docmosis.
      
      Details of major product releases
      
      Yearly Cloud growth report
      
      Press releases
      
      Recent company activities
      
      Latest News & Blog
Cloud Login
Free Trial

Docmosis Commits to Achieving SOC 2 Compliance

3 September 2025

Docmosis is actively working towards SOC 2 compliance to formalize, improve and provide evidence of the security of the Cloud document generation service.

What is SOC 2

SOC 2 is an assurance framework widely used by SaaS providers to demonstrate effective controls for security, availability, processing integrity, confidentiality and privacy. An independent auditor conducts an examination and issues an attestation reports.
These reports come in two forms :

SOC 2 Type 1
SOC 2 Type 2

A Type 1 audit reviews the system, maps controls to the Trust Services Criteria, and tests policies, configurations and records to confirm design. The report outlines the system and controls in scope and gives an independent opinion on design at the audit date. A Type 2 audit assesses operating effectiveness of these controls over a defined period.

Why SOC 2 matters for Docmosis

The Docmosis Cloud often processes sensitive data to generate documents that may contain confidential information. Many customers depend on these documents to run core operations, which makes reliability and security essential.
Security isn’t new to Docmosis Cloud. From the beginning, the service has been designed and operated to align with, and exceed, industry best practice. Some key Docmosis Cloud security features are:

All communication with the service must use HTTPS.
All uploaded artefacts (eg: templates, images) are stored encrypted at rest.
Any data sent to the API and the generated documents are retained only during processing and are then automatically and immediately deleted.

By aligning our practices with the SOC 2 Trust Services Criteria, we bring structure and independent verification to the security measures already in place. We expect this certification will simplify answering vendor risk reviews and reduce the need for separate security questionnaires.

What this means for customers

The SOC 2 work will run in parallel with normal operations, so there will be no change to how the Cloud service is used and no downtime.
The resulting independent attestation will give customers additional assurance that Docmosis’ security controls meet stringent industry standards, making it easier for development teams and procurement teams to consider and onboard Docmosis,

Next steps

Docmosis will start the SOC 2 Type 1 audit this month. After completion of the Type 1 report, effort will focus on maintaining and improving the control environment while preparing for a Type 2 assessment. When SOC 2 reports become available they will be updated to a Docmosis trust portal.

Related Items

23 September 2025

Industry-Agnostic vs Niche Document Generation Solutions

The document generation software a business selects will shape how workflows operate and evolve.
Discover the trade-offs between industry-specific and industry-agnostic solutions to determine which works best for the organization.

9 August 2025

Code-Based vs Template-Based Document Generation

Businesses can implement document generation using either a code-based or a template-based approach, each offering distinct advantages. This article compares both approaches to understand when each might be a better fit.

29 April 2025

Trial Periods in SaaS: Why Flexibility Matters

Short SaaS trial periods often limit the scope of an evaluation. Why does Docmosis offer a 30-day fully functional trial with extensions?

28 March 2025

SaaS vs. Self-Hosted: Why Docmosis offers both

Choosing between SaaS vs self-hosted document generation software often depends on budget, technical requirements, and user preferences. By offering both, Docmosis strives to meet customer’s unique needs and preferences.

28 February 2025

Docmosis 2024: Product Improvements, Security, and Cloud Evolution

In 2024, Docmosis prioritized migrating clients to DWS4, published Interactive Cloud API documentation, and commenced efforts for SOC2 compliance certification, with completion anticipated in 2025.

28 January 2025

The Challenge with SaaS Pricing Models

In business-critical document generation, uninterrupted service amid unexpected usage surges is vital. Docmosis’ pricing model allows customers to exceed quotas without disruptions or extra fees, balancing reliability with fairness.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.