Employment Screening Resources Completes SOC 2 Data Security Audit

AICPA SOC 2

Written By ESR News Blog Editor Thomas Ahearn

Independent auditors conducting a comprehensive Service Organization Control (SOC) 2(SM) examination of Employment Screening Resources® (ESR) – a leading nationwide accredited background check firm –  have issued a SOC 2(SM) report stating ESR maintained effective controls over the security, confidentiality, and privacy of employee screening system data. This SOC 2 report ensures ESR meets the current high standards set by the American Institute of Certified Public Accountants (AICPA) to protect customer and third-party information. To learn more about SOC 2 reports, visit http://www.esrcheck.com/SOC-2/.

“We are pleased that our SOC 2 report has shown that ESR has the appropriate controls in place to secure and protect our systems and databases,” said ESR President and Chief Compliance Officer Brad Landin. “ESR undertook the SOC 2 audit to demonstrate our competency in protecting our clients’ and their employees’ confidential and personally identifiable information from unauthorized access and use. This growing concern in today’s digital world needs to be addressed head-on, and ESR is committed to protecting any and all information we used in our background screening services.”

NDB Accountants & Consultants LLP (NDB), a nationally recognized CPA firm specializing in regulatory compliance and consulting services, performed the audit and issued the report. The SOC 2 audit of ESR was conducted using stringent criteria and internationally recognized standards established by the AICPA to address technological advances and associated risks including cloud services not covered in the now retired SAS70 standards. The following principles used in ESR’s SOC 2 examination were developed by the AICPA and the Canadian Institute of Chartered Accountants (CICA):

  • Security: The system is protected against unauthorized access (both physical and logical).
  • Confidentiality: Information designated as confidential is protected as committed or agreed.
  • Privacy: Personal information is collected, used, retained, disclosed and destroyed in conformity with the commitments in the entity’s privacy notice and with criteria set forth in Generally Accepted Privacy Principles (GAPP) issued by the AICPA and CICA.

SOC 2 reports are becoming increasingly important to ESR’s existing and potential customers seeking assurance about the effectiveness of controls related to the security, confidentiality, and privacy of systems and information used by ESR to process background check orders. Financial institutions require SOC 2 reports while many publicly traded and larger private companies ask for SOC 2 reports before selecting outsourced service organizations such as ESR. Current and prospective clients of ESR wanting more information about ESR’s SOC 2 report should email Thomas Ahearn at tahearn@esrcheck.com.

Along with meeting the current high standards set by the AICPA, Employment Screening Resources (ESR) is accredited by the National Association of Professional Background Screeners® (NAPBS), a distinction held by a small percentage of screening firms. ESR also literally wrote the book on background checks with “The Safe Hiring Manual” by Founder and CEO Lester Rosen. For more information about ESR, the only screening provider offering real-time compliant services via its proprietary ESR Assured Compliance® system, visit http://www.esrcheck.com, call 888.999.4474, or email info@esrcheck.com.

Read the Press Release: Employment Screening Resources (ESR) Announces Completion of SOC 2 Data Security Audit