SOC2 Audit Compliance

Simplifying The Complexity Of Compliance

In 2011, the AICPA established the SSAE16 audit program for service providers in large part because the old SAS 70 designation was being misused, particularly by IT vendors. Under SSAE16 the AICPA designated SOC2 as the ONLY appropriate audit for Cloud Computing providers, and established 5 essential "Trust Services Principles" for Cloud Data.

From two collocation Class A Data Centers in McLean, VA and Atlanta, GA, TBS provides superior hosting services and support to more than 480 clients and their over 23,000 users around the world.

When you host your Deltek in the TBS SOC2 Cloud, your accounting IT infrastructure is financial audit report ready, with a hosted designated-employee-only system that includes your accounting hardware and IT facilities, your server operating systems, your databases, and your Deltek software too. This comprehensive compliance environment enables ALL our customers -- whether they have 5 or 5,000 employees -- to meet the following regulatory standards for their accounting IT:

  • MA 201 (Massachusetts Data Protection Law) -- arguably the most stringent state personal data protection law in the nation
  • ITAR (International Traffic in Arms Regulations) -- all TBS employees are U.S.-born, U.S. citizens, and all TBS-hosted financial data and applications are physically located in the continental United States.
  • "High-impact data controls" for CMS (Centers for Medicare and Medicaid Services), of concern to businesses with HHS contracts, and DISA (Defense Information Systems Agency), for organizations that access and maintain Defense Department or Veterans data
  • Sarbanes-Oxley.

To learn more about compliance in The Cloud, and why the AIPCA has designated SSAE16 SOC2 (NOT SOC1) for Cloud Hosting assurance, visit these links below.