ASEC Issues Exposure Draft to Revise TSP Section 100, Trust Services Principles and Criteria for SOC 2 Reports
On June 15, the Assurance Services Executive Committee (ASEC) of the American Institute of CPAs (AICPA) issued an exposure draft proposing revisions to
Do Companies that Handle Personal Health Information Require a Service Organization Control (SOC) Report?
The superficial answer is no. Companies that store, process or collect protected health information (PHI) electronically or in paper form are not required
Sunset of the SysTrust for Service Organization Controls (SOC) Seal Program
The AICPA and CPA Canada announced that the SysTrust and SOC 3 SysTrust for Service Organizations seal programs are being discontinued. The discontinuation