| SSAE 16 reports only on controls related to financial reporting. If you need assurance of controls directly related to data centers, including privacy, security and availability, you should look for a SOC 2 report. |
Security and application availability should be the last of your concerns when you need to meet compliance security requirements for hosted data or business applications.
SSAE 16 has replaced the original standard – SAS 70. As the first Michigan data center operator to achieve SSAE 16 Type II certification for both our Ann Arbor data centers and Mid-Michigan data center, we can verify we provide a highly secure and compliant hosting environment.
The latest data center audit standards, SSAE 16 (Statement on Standards for Attestation Engagements), verifies certain controls are in place as they relate to financial reporting and recordkeeping, the same as a SOC 1 report (Service Organization Controls).
Types of SSAE 16 audits:
- Type 1 - Audtiors test the accuracy of the service provider's description and assertion.
- Type 2 - Auditors test the accuracy of the service provider's description and assertion, as well as the implmentation and effectiveness of controls over a specific period of time.
When your company needs to meet national compliance regulations and you’re not sure where to start, Online Tech can provide a PCI or HIPAA compliant hosting solution. Compliance starts with meeting the standards of a SSAE 16 audit.
Our Michigan data centers operate with fully redundant power and networks with automatic failover. Our multiple Internet Service Providers (ISPs) and industry-regulated security controls ensure application availability with secure and compliant hosting.
