Developed by the American Institute of Certified Public Accountants (AICPA), SOC 2 is an auditing procedure that ensures service organizations manage customer data using controls for security, availability, processing integrity, confidentiality and privacy.
WatServ’s SOC 2 report focuses on the three trust service principles that are of greatest importance to our customers:
- Security Principle: This principle addresses the protection of system resources against unauthorized access. Access controls help prevent potential system abuse, theft or unauthorized removal of data, misuse of software and improper alteration or disclosure of information. WatServ uses various tools and technologies to ensure our customers’ information and systems are protected. For instance, we use firewalls, two factor authentication and intrusion detection to help prevent security breaches that can lead to unauthorized access of systems and data.
- Availability Principle: This principle addresses the accessibility of WatServ’s or customers’ systems, products or services, as stipulated by a contract or service level agreement (SLA). Actions WatServ takes to ensure availability include monitoring network performance and availability, as well as providing disaster recovery, site failover and security incident handling.
- Confidentiality Principle: This principle addresses controls that aim to restrict the access and disclosure of confidential data. At WatServ, the controls we have in place to meet these criteria include encryption, data loss prevention, backups and more.
WatServ was awarded with a SOC 2 Type I report with an unqualified opinion and no exceptions – the highest possible achievement. The award comes after a lengthy process of reviewing our practices, collaborating with customers to understand their requirements, and documenting our processes, procedures and controls.
What Does this Mean for Our Customers?
This achievement demonstrates WatServ’s commitment to ensuring continued operational effectiveness and assurance.
WatServ has always partnered with services providers who are SOC 2 certified for services such as data center hosting. Our SOC 2 Type I report now confirms service excellence and control for all facets of our CloudOps Managed Services.