Confirmation Achieves SOC 1, 2, and 3 Compliance

Confirmation, the online platform trusted by 1.5 million users around the world to quickly and securely verify sensitive financial data, has successfully completed its most recent System and Organization Control (SOC) examinations. This marks Confirmation’s 10th consecutive year of completing SOC examinations (which were previously known as SaaS 70).   

“Confirmation maintains a secure and reliable environment for every auditor, banker, lawyer, and creditor that uses our platform to confirm financial data,” says Brian Fox, president and founder of Confirmation. “Continued successful SOC examinations are a key part of our commitment to exceeding security-industry standards and giving our clients peace of mind.”  

SOC reports examine security controls over the services provided by companies like Confirmation. The AICPA has established three types of SOC reports; Confirmation completes all three to address its customers varying needs The scope of the examination covers Confirmation.com for the review period of December 1, 2017, to November 30, 2018. 

SOC 1 – Reporting on Controls at a Service Organization Relevant to User Entities’ Internal Security Controls Over Financial Reporting. Confirmation’s SOC 1 report is a Type 2 report and covers the aforementioned review period. 

SOC 2 – Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, and/or Privacy. The Confirmation platform successfully completed the SOC 2 for all five Trust Services Principles. Confirmation’s SOC 2 report is a Type 2 report and covers the aforementioned review period. 

SOC 3 – Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy. The report covers the aforementioned review period. 

Schellman & Company, LLC., performed Confirmation’s SOC examination. 

Confirmation is committed to effective operational controls and privacy and security best practices. To that end, Confirmation undergoes all three SOC examinations annually. The company also holds an ISO 27001 certification for the Confirmation service, is TRUSTe Privacy Policy certified, and is EU Privacy Shield certified. Confirmation also annually completes more than 400 external security reviews by our largest global customers. Collectively, these measures provide assurance about the way Confirmation protects the privacy and confidentiality of its users’ data and the security, availability, and processing integrity of its system. 

關於 Confirmation 

Confirmation is the digital platform and global network trusted by audit firms, banks, law firms, and credit managers to quickly and securely verify financial data. Confirmation invented electronic confirmations nearly 20 years ago, reshaping the audit confirmation process. Today, Confirmation helps 1.5 million users across 170 countries confirm more than $1 trillion in financial data every year. Learn more at Confirmation.com.

Last updated: February 18, 2019.

Related Articles