Xantrion Inc., a top 100 worldwide provider of IT services for small and midsize companies in the San Francisco Bay Area, has successfully completed its Service Organization Controls (SOC) 2 Type II examination for the company’s portfolio of services, ranging from application hosting to desktop support. The rigorous independent assessment shows that Xantrion’s hosted servers and applications, internal security, and business continuity practices all comply with current best practices for cybersecurity. Xantrion customers, with their own certification and compliance requirements, such as HIPAA and PCI DSS, may use Xantrion’s SOC 2 Type II report as part of their own compliance strategy. For example, the SOC 2 certification proves the following about Xantrion operations.
Security: Systems are protected against unauthorized access (both physical and logical.)
Confidentiality: Information designated as confidential is protected as committed or agreed.
Privacy: Personal information is collected, used, retained, disclosed, and destroyed in conformity with privacy principles issued by the American Institute of Certified Public Accountants (AICPA) and the Canadian Institute of Chartered Accountants (CICA.)