SOC 2 Type 1 Report

essensys Service Organisation Control 2

At essensys, we recognise the importance of the data we collect and process on behalf of our customers. The SOC Type 1 Report signifies how privacy, confidentiality and integrity of data handling is a priority to essensys. This includes our customer’s data.

SOC 2 compliance is an essential component of information security for many organisations and the audits are designed to examine the policies, procedures, and internal controls of businesses. Testing and reporting on these controls are important because they impact the security, privacy, and confidentiality of an entity’s sensitive data. The goal here is to help outline the standards that are necessary to keep sensitive data private and secure while it’s in transit or at rest.

Every audit is conducted in accordance with the AICPA audit guide and Attestation Standards Section 101. As a proof of compliance to the AICPA auditing procedure, SOC 2 Type 1 report shows that essensys has best practices in place and are taking the appropriate steps to ensure customer data is secure.

 

What is SOC 2 type 1 report?

According to the AICPA, this report covers the “management’s description of a service organization’s system and the suitability of the design of controls.” This report evaluates the controls at a specific point in time.

SOC 2 type 1 reports on non-financial reporting controls and focuses on five key trust services criteria – Security, Availability, Processing Integrity, Confidentiality, and Privacy.