Caseware Cloud continually undergoes independent security audits to reinforce our commitment to data security, privacy, and compliance controls. Independent auditors examine our entire Information Security Management System (ISMS) to verify our service delivery, operations and management of the Caseware Cloud platform to ensure it conforms to industry standards. These certifications demonstrate Caseware Cloud’s international commitment to security and quality.
Independent auditing company, ControlCase International, confirms that Caseware Cloud meets the requirements given in ISO 27001 and that its ISMS is in alignment with best practices. This certification is independent of Amazon Web Services (AWS), which has its own ISO 27001 certification for its data centers, infrastructure and operations. ISO 27001:2013 is a widely recognized international standard that places requirements on how an ISMS identifies, analyzes and addresses information risks, and how the organization stays ahead of changes in threats and mitigates their possible business impacts. The certificate is here.
SOC 2® Type 1 and Type 2
AICPA, the world’s largest member association representing the accounting profession, affirms that Caseware Cloud ISMS meets the Trust Services Criteria for SOC 2®.
AICPA SOC 2® for Service Organizations are examination engagements performed by a service auditor. These reports focus on one or multiple Trust Services categories – security, availability, processing integrity, confidentiality, or privacy using predefined criteria.
Caseware International has successfully obtained SOC 2 Type 1 and Type 2 certification.
SOC 2 Type 1, a report on management’s description of the service organization’s system and the suitability of the design of the controls.
SOC 2 Type 2, a report on management’s description of the service organization’s system and the suitability of the design and operating effectiveness of the controls.
*Our SOC 3 Report is available in PDF format here.