What protections do they have in place to ensure your data is SAFE?
What type of System and Organization Controls do you have in place for your company and or your service providers or both? You should probably have both and there are two important types; SOC 1 and SOC 2 (pronounced Sock)
According to Google: Typically, a SOC 1 report is designed to address internal controls over financial reporting while a SOC 2 report addresses a service organization’s controls that are relevant to their operations and compliance. One or both could be right for your organization. In my estimation you should have both with SOC 2 being critical for organizations that provide cloud services for you.
What does SOC 2 compliance mean?
According to Google, SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization and the privacy of its clients. For security-conscious businesses, SOC 2 compliance is a minimal requirement when considering a SaaS provider.
The SafeSourceIt™ family of eProcurement solutions are SOC 2 compliant, so that our customers do not have to worry about their data and can focus on the important task of sourcing the best products and services at the best price at the right time to support their customers.
If you would like to learn more about SafeSourcing, please reach out to one of our very talented customer services account managers.