You are here: Home » Certifications » SSAE 16 Type II Certified Data Recovery
Certified Secure Data Recovery Services
SSAE 16 Type II / SAS 70 Certified Company
Call us to talk to a Data Recovery Specialist Now
1-800-388-1266 Service Technicians Available 24/7/365 Days
Alternatively, you can also fill out a request help form online.
|
|
SSAE 16 Type II Audit Certification - See Audit Report Below:
Secure Data Recovery Services is the first and currently the only data recovery company to achieve SSAE 16 Type II certification. Many data recovery providers still rely on outdated SAS 70 standards or follow no voluntary information handling standards whatsoever.
Please see the latest SSAE 16 Type II Audit Certification Report for Secure data Recovery Services below.
Data security is our highest priority, and in addition to SSAE 16 Type II certification, we've received regular SAS 70 audits from independent auditing firms. These audits are further proof of the excellent data hosting and processing controls that we use to protect customer information and recovered data.
About SSAE 16 Certification
Ensuring Data Security Through Independent SSAE 16 Attestations
Statement on Standards for Attestation Engagements (SSAE) No. 16 audits are performed independently to assess the systems and controls that a business uses to protect customer information. It's important to consider the implications of an SSAE 16 certification when choosing a data recovery company, especially if you need to comply with data security and privacy qualifications such as HIPAA, FERPA, NIST 800.34 or GLBA.
An SSAE certification requires regular annual attestations of all of the systems that companies use to handle data. The attestation is an updated version of SAS 70 audits, with more of an emphasis on data security along with transparency in information handling.
SSAE 16 certification requires a complete description of the systems that a business uses when accessing, transferring and storing customer data. The updates to SAS 70 standards ensure better information protection, as SAS 70 audits had less of an emphasis on modern data security and protection techniques.
SSAE 16 is a fair, impartial and up-to-date standard that promotes proper information security and an essential voluntary standard that shows a data recovery company's commitment to proper data handling controls.
Why Is Security Important In The Data Recovery Industry?
Recovered data can be extremely sensitive, especially if it pertains to your company's customers. Unfortunately, many data recovery companies have no established procedures for handling data, which can be disastrous in some circumstances.
Data recovery providers need to prevent unauthorized access at all times, especially if data is transferred electronically. Otherwise, sending a hard drive or other electronic medium in for data recovery could violate HIPAA guidelines or other privacy protection laws. Recovered data might be accessible to any person working at a data recovery company or even to third parties without your knowledge or approval. Obviously, this would compromise privacy and security standards and could seriously put a company at risk.
To prevent this, Secure Data Recovery Services uses secure FTPs for electronic data transfer and keeps a copy of recovered data for each case until it has been received and reviewed by our clients. Data is then destroyed securely after it has been returned to our clients in a manner compliant with HIPAA and the GLB Act.
We also protect data during the recovery process. Recovered information can only be accessed by qualified data recovery engineers. We take every possible step to protect our clients' data and this includes regular audits and attestations to meet standards such as those in SSAE-16.
SSAE 16 And Data Recovery
Information security is an important part of SSAE 16 Type II certification, so a good attestation shows that a data recovery company has appropriate controls for keeping data safe and ensuring appropriate access. SSAE 16 emphasizes appropriate and fair controls that meet key objectives such as limiting data access or providing a safe means of electronically transferring data.
Secure Data Recovery Services has achieved SSAE 16 Type II certification as a way of demonstrating the security controls that protect our clients' information during hosting and processing. During an attestation, auditors have access to all relevant computer systems that Secure Data Recovery Services uses to store customer data.
Secure Data Recovery Services must also provide the following:
- A description of all controls that ensure data security
- Control objectives that detail the purpose of these controls
- Demonstrations of controls and systems to show effective compliance with control objectives
To achieve SSAE 16 certification, businesses must show that they practice suitable data handling procedures. Firewalls and computer systems are regularly evaluated by auditors to ensure appropriate data security. As Secure Data Recovery Services provides instant transfer of recovered data via secure FTP, these systems are also evaluated regularly to ensure that they cannot be accessed accidentally or maliciously. All of Secure Data Recovery Services' data handling controls and processes are individually assessed to ensure that data is only accessed by qualified data recovery engineers during our services.
After an independent SSAE 16 auditor assesses relevant data handling procedures, systems and controls, the auditor will provide a report that shows that the company's processes are suitable for handling and protecting information. In a Type II attestation, the auditor will also review demonstrations of data handling systems.
Any security weaknesses or threats are also detailed in an auditor's report and must be rectified before the next attestation. SSAE certification requires stringent and ongoing attention to data security.
The Benefits Of Working With An SSAE 16 Certified Company
SSAE 16 is an important certification that ensures transparency and proper information handling in a certified company's accounting.
In the data recovery industry, SSAE 16 certification is especially beneficial for several reasons:
- Certification shows that the data recovery company uses appropriate techniques to store customer information and to handle bills.
- SSAE 16 certified companies have the necessary controls in place to handle enterprise-level data recovery services. This includes cases with data protected by privacy laws such as HIPAA, FERPA, SOX and GLBA.
- Data handling certifications such as SSAE 16 show that data is only accessible by authorized data recovery personnel.
- Clients who require SSAE 16 certification can easily access our attestation reports, which provide a detailed and independent assessment of our information security controls. This can make the data recovery process much more efficient, as data can be securely transferred to our clients after it has been recovered while maintaining proper SSAE 16 and SAS 70 compliance.
Secure Data Recovery Services uses secure FTP servers to transfer data electronically and works with a closed-system lab to prevent any unauthorized access to our clients' data. Our controls ensure security while providing a fast, efficient way for our clients to access recovered data. Independent certifications like SSAE 16 show the strength of our hosting systems and provide you with peace of mind and legal protection during the data recovery process.
Why Certifications Make A Difference
Secure Data Recovery Services is the first and currently the only data recovery company to achieve SSAE 16 certification. Many data recovery providers still rely on outdated SAS 70 standards or follow no voluntary information handling standards whatsoever.
Data security is our highest priority, and in addition to SSAE 16 Type II certification, we've received regular SAS 70 audits from independent auditing firms. These audits are further proof of the excellent data hosting and processing controls that we use to protect customer information and recovered data.
Secure Data Recovery Services also regularly undertakes HIPAA Security Compliance audits from independent third parties. These audits ensure that our engineers are capable of handling and protecting data related to the health care industry and also require notoriously strict controls on data access and information security. You can access our HIPAA audits and reports here.
In addition to SSAE 16 certification, Secure Data Recovery Services is also one of the only data recovery companies in the world to offer advanced high security services and qualified forensics services, complete with chain of custody reports, certified engineers and other features that ensure absolute control over data access.
Why You Can Trust Secure Data Recovery With Your Data
When you need data recovery, you should demand proof of proper data handling and security procedures. Most data recovery companies are unable to provide even a basic overview of their security practices, often because they don't seek third party audits or comply with any standard set of guidelines.
Unlike other data recovery companies, we take the appropriate steps to prove our statements about data security. All of our certifications and proof documents are posted here.
Clients like Bank of America, NASA Goddard Space Center, the US Government, the Smithsonian Institution, CompuCom and Lawrence Livermore National Labs rely on Secure Data Recovery Services for enterprise-level data recovery services thanks in part to our emphasis on proper information security.
Secure Data Recovery Services uses advanced techniques to protect customer data and can handle data recovery cases of any size or with any type of compliance requirements. Our excellent success rates and our easily-accessible security certifications are proof of the quality of our services.
