NextDeal announced it successfully has completed a Service Organization Controls (SOC) 2 Type II examination for its Hosting and Automated Marketing System. NextDeal retained international business advisory firm Skoda Minotti for its SOC 2 examination.
According to NextDeal CEO Robert Reich: “Skoda Minotti is a leader in SOC reporting and IT advisory solutions. Having our systems, controls and procedures audited to SOC standards annually by them is crucial in giving our customers confidence in NextDeal.”
“We were excited to work with NextDeal on their initial assessment and enjoyed our continued audit relationship with Robert and his team on the completion of their SOC 2 Type II,” Ben Osbrach, partner-in-charge of Skoda Minotti’s Risk Advisory Group, said.
SOC 2 is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants. A SOC 2 report is performed by an independent auditing firm and examines the controls and processes involved in storing, handling and transmitting data securely. The successful completion of the voluntary engagement illustrates NextDeal’s ongoing commitment to create and maintain the most stringent controls for the protection and security of its customers’ confidential information.
The auditor examined NextDeal’s controls related to network connectivity, firewall configuration, secure software development life cycle, computer operations, database access, data transmissions, backup, disaster recovery, fire suppression, physical security, and more. Following the audit, NextDeal received a Service Auditors’ Report with an unqualified opinion, demonstrating that NextDeal’s policies, procedures, and infrastructure for data protection, security, and confidentiality met or exceeded the stringent SOC 2 criteria.
“The successful completion of our SOC 2 Type II examination provides our customers with the assurance that the controls and safeguards we employ to protect and secure their data are first-rate,” Vice President of Operations & Support Elizabeth Allen said.
SOC reports have become increasingly important for data-handling service providers since the passage of the Sarbanes-Oxley legislation, which requires a company’s business partners to have adequate internal controls. NextDeal’s customers easily can incorporate its Service Auditors’ Report in their Sarbanes-Oxley compliance programs as proof that appropriate controls are in place. The SOC 2 report also can help NextDeal’s customers to comply with other regulations, including HIPAA (Health Insurance Portability and Accountability Act) and GLBA (Gramm-Leach-Bliley Act of 1999).