Technology and cybersecurity solutions provider Visory has successfully completed Service Organization Control (SOC) 2 Type II certification for its hosting business. The achievement caps off a milestone year for the company, which in 2022 combined the resources of RightSize Solutions, True North Networks and Swizznet to form Visory Inc.
Visory delivers complete IT support solutions to organizations in the accounting, wealth management and construction industries. The SOC 2 Type II certification from the American Institute of Certified Public Accountants (AICPA) validates that Visory’s internal controls are being met for the security, availability, and confidentiality of client data.
Visory CEO Bob Hollander says the company continues to bolster the rigorous security standards it has in place for its internal systems. “We hold ourselves accountable for meeting the highest standards because our clients shouldn’t have to think twice about the availability and security of their information when working with Visory.”
The achievement caps off a milestone year for the company, which in 2022 combined the resources of RightSize Solutions, True North Networks and Swizznet to form Visory Inc.
The SOC 2 examination focuses on a service organization’s internal controls for data security, availability, processing integrity, confidentiality or privacy. Organizations eligible for SOC 2 exams include cloud service providers, software-as-a-service (SaaS) providers and others that store client information in the cloud.
Independent audit firm CliftonLarsonAllen LLP conducted Visory’s examination and found that the company’s service commitments and system requirements were achieved based on the AICPA’s trust services criteria for security, availability, and confidentiality. The examination took place from June 1, 2022, through Sept. 30, 2022, and included Visory’s RightSize Solutions and Swizznet offerings.
In addition to achieving SOC 2, Type II certification, Visory also complies with the recommendations and guidance in IRS publication 4557 on safeguarding taxpayer data. The company’s Swizznet business line is PCI SAQ D compliant with the Payment Card Industry Data Security Standard (PCI DSS), a strict set of policies and procedures that protect credit, debit and cash card transactions and prevent the misuse of cardholders’ personal information.
“Cybersecurity and data privacy have been at the core of our business since we started," Hollander says. "The SOC 2 Type II certification is the latest affirmation of our commitment to serving clients well by embedding enterprise-level data privacy and systems security protocols and processes into everything we do.”
Like what you're reading?
Subscribe to our FREE newsletter and we'll deliver content like this directly to your inbox.