Pearl Technology announces SOC 2 Type II certification: Report on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality or Privacy
These reports are intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to security, availability, and processing integrity of the systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems. These reports can play an important role in:
- Oversight of the organization
- Vendor management programs
- Internal corporate governance and risk management processes
- Regulatory oversight
Similar to a SOC 1 report, there are two types of reports: 1) a type 2 report on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls; and 2) a type 1 report on management’s description of a service organization’s system and the suitability of the design of controls. Use of these reports is restricted.
“Our team put a lot of hard work and innovation into this process. It was a massive undertaking to get SOC 2 Type II certified. We learned how important it is to orchestrate processes and procedures that enhance our offerings and security but don’t cause a hindrance to our operations. This achievement is something we are proud of,” said Anthony Mini, Senior Vice President of Security & Operations.
If you are interested in working with a SOC 2 Type II certified full-service technology company, please contact us today!