In March 2022, CrowdComms were awarded Information Security Certification ISO27001:2013 by the British Standards Institute (BSI), recognising its commitment to the highest data security standards.
It is imperative to us that all levels of CrowdComms’ Information Security are as robust as possible, and access to clients’ data is tightly controlled. While the ISO27001 certification is there to reassure clients to a significant extent, we were determined to take our security measures even further to demonstrate the security controls in place for our U.S. client base.
We are now delighted to announce that CrowdComms has successfully completed the System and Organization Controls (SOC) 2 Type I examination in recognition of our commitment to information security. Developed by the American Institute of CPAs (AICPA), SOC 2 (System and Organization Controls) defines criteria for managing customer data based on five ‘trust service principles’ – security, availability, processing integrity, confidentiality and privacy.
A SOC 2 examination provides organisations with a report on their internal controls and how it protects customer data and sensitive information. It is the standard for data security among digital companies in the U.S.
In our case, an independent auditor, Insight Assurance, conducted the detailed examination via Vanta. Through this process, CrowdComms demonstrated adherence to data security, availability and confidentiality standards developed by the American Institute of Certified Public Accountants (AICPA).
With our SOC 2 recognition, CrowdComms not only protects the safety of our customers’ data today but demonstrates that we have set the right standards in place for the future.
"I am delighted with this achievement. It provides further reassurance to our U.S. clients that we have the security controls in place to protect their data. Delivering this report has been a team effort across CrowdComms, and we aren't resting here! Our Type II report is underway and will hopefully be completed by the summer of 2023 to further show our commitment to security."
Donna Fielding, Information Security Manager