CUCollaborate Achieves SOC 2® Type II Compliance

Learn how the independent audit report affirms CUCollaborate's commitment to controls relevant to security, confidentiality, and privacy.

CUCollaborate Staff


May 1



View all posts by 

CUCollaborate Staff

Articles Posted by

CUCollaborate Staff

A squiggly pink arrow pointing downward and to the right.

Independent report affirms company’s commitment to controls relevant to security, confidentiality, and privacy.

CUCollaborate is thrilled to announce it has attained Service Organization Control (SOC) 2® Type II compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations, also known as SSAE 18.

We have achieved this standard with an unqualified opinion, which serves as third-party industry validation that CUCollaborate provides enterprise-level security for customer data secured in our system.

Security and Compliance at CUCollaborate

Security and compliance are a major focus at CUCollaborate. As a trusted B2B, SAAS provider of software products and solutions for credit unions, we take the protection and privacy of our clients’ data extremely seriously.

Inside the Audit Report

The SOC 2® Type II audit report was completed independently by Prescient Assurance, a leader in security and compliance certifications for B2B, SAAS companies worldwide. Prescient is a registered public accounting firm in the US and Canada that provides SOC 2® attestation services to international clients and complies with international standards for assurance.

The company conducted an examination of CUCollaborate’s system to determine the suitability of both the design and operating effectiveness of security and compliance controls.

The firm’s unqualified opinion demonstrates that CUCollaborate manages both client and prospective client data with the highest standard of security and compliance.

More About SOC 2® Compliance

Per the AICPA, a SOC 2® audit is intended to provide “detailed information and assurance about the controls at a service organization relevant to security, availability, and processing integrity of the systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems.”

Further, a type II report focuses specifically “on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls.”

Prescient Assurance logo


Company News

No items found.