Online Backup Company CoreVault Got SAS 70 Type II Certification
For compliance with Sarbanes-Oxley, HIPAA and GLBA
This is a Press Release edited by StorageNewsletter.com on May 18, 2009 at 3:38 pmCoreVault, an online data backup and recovery company located in Oklahoma City, has been awarded SAS 70 Type II Certification. The Statement on Auditing Standards (SAS) No. 70 certification represents that CoreVault has been through an exhaustive audit of its control objectives and activities with respect to its technology and services and confirms that adequate controls and safeguards are in place to protect customer data.
“Ensuring a safe and secure environment that provides the proven reliability required by our customers is priority number one,” says Woodie Wallace, Vice President, Customer Care Operations for CoreVault. “Earning this high level of certification by a credible independent third party reinforces CoreVault’s commitment to supporting its customers at the highest levels.”
The widely recognized SAS 70 Audit represents that a service organization has had its control objectives and control activities examined by an independent accounting and auditing firm. The examination conducted at CoreVault included not only operational process controls, but also security and information technology processes. A Type II report not only includes the service organization’s description of controls, it details testing of the service organization’s sustained controls over a minimum six-month period.
The American Institute of Certified Public Accountants (AICPA) developed the SAS 70 certification and points out that service organizations receive significant value from having a SAS 70 engagement performed. A Service Auditor’s Report with an unqualified opinion that is issued by an Independent Accounting Firm differentiates the service organization from its peers by demonstrating the establishment of effectively designed control objectives and control activities. A Service Auditor’s Report also helps a service organization build trust with its user organizations (i.e. customers).
“It is always reassuring to know that a corporation sets high standards for performance and customer service. It is another thing when a third party organization recognizes those standards. The investment in this certification differentiates CoreVault from its peers by reassuring them that their critical data is in the safest and most secure place possible. The report also elevates the trust over 20 different professional associations placed with CoreVault by endorsing them to their members. Trust is everything when you are endorsed by as many associations in the legal and healthcare industry as CoreVault is today,” said Wallace.
According to Aberdeen Group, a leading provider of fact-based research, SAS 70 removes barriers of indecision for potential prospects who are considering using the service delivery model. Public companies regulated by Sarbanes-Oxley (SOX) must prove that their internal controls and procedures are entirely reliable, and technology infrastructure is a key component of that requirement. These companies are asking the same questions of their suppliers that their auditors are asking them, making SAS 70 certification an important requirement in the vendor selection process.