This independent affirmation confirms that RedVision’s critical controls are effectively managing the security, availability and confidentiality of client information.
The SOC 2 is based on Trust Services Principles, which according to the American Institute of Certified Public Accountants (AICPA), “helps differentiate entities from their competitors by demonstrating to stakeholders that the entities are attuned to the risks posed by their environment and equipped with the controls that address those risks.”
Completion of the SOC 2 Type1 examination indicates that RedVision’s processes, procedures and controls involved in storing, handling and transmitting data securely have been formally evaluated and tested by an independent audit firm. The evaluation included a rigorous assessment of the company’s data center security management, written policies and procedures, physical security, network architecture, user access management, network and systems monitoring, and software development and resulted in validation of RedVision’s best-practice standards.
“Many of our clients rely on us to protect their clients’ information,” said Brian Twibell, CEO of RedVision. “As a result, RedVision has continuously implemented best-practice controls demanded by their customers to address information security and compliance risks. Earning this accreditation demonstrates RedVision’s continued commitment to maintaining the industry’s highest control standards for operations, compliance and security.”
RedVision’s customers will be able to use the Service Auditor’s Report in its compliance programs as proof that appropriate controls are in place. In addition, the SOC 2 report may help customers comply with other regulations, including the Consumer Financial Protection Bureau (CFPB).
"Data security and privacy are top priorities for RedVision,” said Joe Ross, CTO at RedVision. “The successful completion of the comprehensive examination reaffirms RedVision’s ongoing commitment to creating and maintaining best-practice industry controls for the highest protection and security of our customers’ sensitive information.”