SSAE 16

SSAE 16 Compliance

SSAE 16 (formerly SAS 70) Type 2

The new service organization reporting standard, Statement on Standards for Attestation Engagements SSAE 16, is effective as of June 15, 2011. SSAE 16 supersedes Statement on Auditing Standards SAS 70 with the professional guidance on performing the service auditor’s examination.SSAE 16 SOC2

Our data centers have obtained a Service Organization Controls 1 (SOC 1), Type II report. The audit for this report is conducted in accordance with the Statement on Standards for Attestation Engagements (SSAE 16) and the International Standards for Assurance Engagements 3402 (ISAE 3402) professional standards. This dual-standard report is specifically intended to meet the needs of our customers and their auditors, as they evaluate the effect of the controls on their financial statement assertions. The SOC 1 report attests that our data centers’ control objectives are appropriately designed and operating effectively.

Global Data Vault can provide these reports upon request. These reports explain the internal control descriptions and security procedures in place to assist you in meeting your compliance requirements.

SOC 2 on the Security and Availability Trust Services Principles

In addition to the SOC 1 report, our data center obtains a Service Organization Controls 2 (SOC 2), Type II report. Similar to the SOC 1 in the evaluation of controls, the SOC 2 report is an attestation report that is an evaluation of controls specific to the criteria set forth by the American Institute of Certified Public Accountants (AICPA) Trust Services Principles. The principles define leading practice controls relevant to security, availability, processing integrity, confidentiality, and privacy applicable to service organizations. SOC 2 is an evaluation of the design and operating effectiveness of controls that meet the criteria for the security and the availability principles set forth in the AICPA’s Trust Services Principles criteria.

Upon request and under NDA, this report is also available to our customers.

bandwidth required

Bandwidth – How Much is Enough?

How Much Bandwidth is Enough? Knowing and planning for an appropriate level of bandwidth is a key component of every DRaaS solution. In our most common DRaaS implementation, the data is moved from local repositories at the customer site over the internet or WAN to our...
Read More

Sizing for Local Backup Repositories

Proper sizing for local backup repositories is a critical step in building a complete backup and disaster recovery as a service solution (DRaaS). Below, we will list the most accurate way of determining what your data change rate is and how large the repository should...
Read More

Network System Failure Cost Southwest Airlines $82M

How Southwest Airlines Could Have Avoided An $82M Disaster Network system failure is no fun for any business, but it can be especially painful for major airlines. The outage that hit Southwest Airlines on July 20 is a case in point. The disaster caused the cancelation...
Read More