Written By ESR News Blog Editor Thomas Ahearn
Employment Screening Resources® (ESR) – a leading global background check provider – has announced that independent auditors conducting an SSAE 18 SOC 2® (Service Organization Control) Type 2 audit of ESR’s operations for the six month testing period of January 2019 through June 2019 have issued ESR a SOC 2® Type 2 report that states management has maintained effective controls over the privacy, security, and confidentiality of its employee background screening system.
“We are pleased that our annual SOC 2 Type 2 report once again shows ESR has appropriate controls in place to secure and protect our systems and databases,” said ESR President and Chief Compliance Officer (CCO) Brad Landin. “ESR undergoes SOC 2 Type 2 audits to demonstrate our competency in protecting the personally identifiable information of our clients and their employees from unauthorized access and use. ESR is committed to protecting all information used in our background checks.”
The annual comprehensive and independent SSAE 18 SOC 2® Type 2 audit ensures that ESR meets the current high standards set by the American Institute of Certified Public Accountants (AICPA) to protect customer and third-party information. NDNB Accountants & Consultants LLP, a nationally recognized Certified Public Accounting (CPA) firm specializing in regulatory compliance and consulting services, performed the examination and issued the SOC 2 report.
The SSAE 18 SOC 2® Type 2 audit was conducted using stringent criteria established by the AICPA. These internationally recognized standards address technological advances and associated risks including cloud services not covered in the now retired SAS 70 standards. The principles and criteria used in ESR’s SOC 2 audit were developed by the AICPA and the Canadian Institute of Chartered Accountants (CICA) for use by practitioners in trust services engagements:
- Security: The system is protected against unauthorized access (both physical and logical).
- Confidentiality: Information designated as confidential is protected as committed or agreed.
- Privacy: Personal information is collected, used, retained, disclosed, and destroyed in conformity with the commitments in the entity’s privacy notice and with criteria set forth in Generally Accepted Privacy Principles (GAPP) issued by the AICPA and CICA.
The ESR SOC 2® Type 2 report is becoming increasingly important to ESR’s existing and potential customers seeking assurance about the effectiveness of controls related to the privacy, security, and confidentiality of consumer information used to process background checks. Financial institutions require it, and publicly traded larger private companies are frequently asking for a SOC 2 report before selecting an outsourced service organization like ESR. More information about the report is at www.esrcheck.com/Why-ESR/SOC-2/.
Employment Screening Resources® (ESR) protects the privacy, security, and confidentiality of consumer information during background checks through annual SOC 2® Type 2 audits. ESR is also accredited by the Professional Background Screening Association (PBSA), adheres to the Privacy Shield Framework, complies with the General Data Protection Regulation (GDPR), and won the 2018 TekTonic Award from HRO Today Magazine for innovative and disruptive screening technology. To learn more, visit www.esrcheck.com.
NOTE: Employment Screening Resources® (ESR) does not provide or offer legal services or legal advice of any kind or nature. Any information on this website is for educational purposes only.
© 2019 Employment Screening Resources® (ESR) – Making copies or using of any part of the ESR News Blog or ESR website for any purpose other than your own personal use is prohibited unless written authorization is first obtained from ESR.