Data & System Security

We Follow the Experts

System and Organization Controls (SOC)2 is a comprehensive reporting framework put forth by the American Institute of Certified Public Accountants (AICPA) in which independent, third-party auditors (i.e., CPAs) conduct an assessment and subsequent testing of controls relating to the Trust Services Criteria (TSC) of Security, Availability, Processing Integrity, Confidentiality or Privacy.

System and Organization Control (SOC) reports were introduced in 2011 to address a growing number of system and data security issues. A set of specific criteria has been adopted by the financial community that are used to measure an organization’s compliance with the best-practices that have been developed.

 

GateKeeper has received and maintains an unqualified opinion.

For companies that demonstrate adherence to the Trust Services Criteria, auditors issue an unqualified opinion, which means that no significant exceptions were found during an audit.

 

More Detail on Trust Services Criteria

Security

Information and systems are protected against unauthorized access, unauthorized disclosure of information, and damage to system that could compromise the availability, integrity, confidentiality, and privacy of information or system and affect the entity’s ability to meet its objectives.

Availability

Information and systems are available for operation and use to meet the entity’s objectives

Processing integrity

System processing is complete, valid, accurate, timely, and authorized to meet the entity’s objectives

Confidentiality

Information designated as confidential is protected to meet the entity’s objectives

Privacy

Personal information is collected, used, retained, disclosed, and disposed of to meet the entity’s objectives.

 

Contact us today for more information or to set-up a demo!