CUCollaborate Achieves SOC 2® Type II Compliance
Learn how the independent audit report affirms CUCollaborate's commitment to controls relevant to security, confidentiality, and privacy.
Independent report affirms company’s commitment to controls relevant to security, confidentiality, and privacy.
CUCollaborate is thrilled to announce it has attained Service Organization Control (SOC) 2® Type II compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18.
We have achieved this standard with an unqualified opinion, which serves as third-party industry validation that CUCollaborate provides enterprise-level security for customer data secured in our system.
Security and Compliance at CUCollaborate
Security and compliance are a major focus at CUCollaborate. As a trusted B2B, SAAS provider of software products and solutions for credit unions, we take the protection and privacy of our clients’ data extremely seriously.
Inside the Audit Report
The SOC 2® Type II audit report was completed independently by Prescient Assurance, a leader in security and compliance certifications for B2B, SAAS companies worldwide. Prescient is a registered public accounting firm in the US and Canada that provides SOC 2® attestation services to international clients and complies with international standards for assurance.
The company conducted an examination of CUCollaborate’s system to determine the suitability of both the design and operating effectiveness of security and compliance controls.
The firm’s unqualified opinion demonstrates that CUCollaborate manages both client and prospective client data with the highest standard of security and compliance.
More About SOC 2® Compliance
Per the AICPA, a SOC 2® audit is intended to provide “detailed information and assurance about the controls at a service organization relevant to security, availability, and processing integrity of the systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems.”
Further, a type II report focuses specifically “on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls.”