What is SOC 2 Compliance and why is it important?
RouteSmart Technologies works with some of the largest global firms in each of our core markets. These clients require the highest levels of security and need to be sure that the information they provide to RouteSmart via web services and cloud solutions are protected through every step.
SOC 2 reporting is designed for service providers storing customer data in the cloud. Compliance means RouteSmart has established and follows strict information security policies and procedures.
SOC 2 Compliance reporting is designed for the growing number of technology and cloud computing entities that are becoming very common in the world of service organizations. SOC 2 reports on the security behind transactions in the cloud, making it more relevant than ever in the growing wake of data breaches and fraud.
SOC 2 reports on the security behind highly sensitive transactions. Clients need to trust their data providers with confidential information, and a SOC 2 report means companies can depend on their solution provider for compliant, secure hosting. This means less concern for clients, and a more efficient cloud environment.
There are five Trust Services Principles, or criteria, that comprise a SOC 2 report: Security, Availability, Processing Integrity, Confidentiality and Privacy. A team of certified AICPA Auditors has reviewed, audited and attested to policies and practices in the following areas:
- Security: systems are protected against unauthorized access (physical & logical)
- Availability: systems are available for operation and use as committed or agreed
- Processing Integrity: system processing is complete, accurate, timely, and authorized
- Confidentiality: information designated as confidential is protected as committed or agreed
- Privacy: personal information is collected, used, retained, disclosed, and destroyed in conformity with the commitments in the entity’s privacy notice and with the criteria set forth in Generally Accepted Privacy Principles (GAPP)
RouteSmart’s Business Operations and Product Environments have the appropriate SOC 2 compliant safeguards and procedures in place ensuring information security measures are in line with today’s unique cloud requirements.