Computer Guidance Corporation Successfully Passes SOC 2 Type II Audit For Its Cloud Hosting Systems, Services and Associated ProcessesAssurance provided by CliftonLarsonAllen, LLP in Accordance with Attestation Standards Established by the American Institute of Certified Public Accountants Computer Guidance Corporation, the leading developer of cloud-based ERP solutions for the construction industry, today announced receipt of its annual System and Organization Control (SOC) 2 Type II attestation engagement report for the eCMS Hosting Service system that was designed and implemented throughout the period October 1, 2018, to December 31, 2019. The trust services report provides independent validation that Computer Guidance Corporation’s security, availability, and confidentiality controls operated in accordance with the American Institute of Certified Public Accountant (AICPA) applicable Trust Services Criteria (TSC) as a result of an examination of the description of a service organization’s system and the suitability of the design and operating effectiveness of controls involving a number of factors such as security, availability, and confidentiality outlined in the audit report. The audit reviewed several processes and procedures that have been implemented by Computer Guidance to proactively manage the cloud environments that host the eCMS system, associated Tier III data centers, including:
- eCMS Hosting Services System based on the criteria set by the AICPA Guide Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2®)
- The suitability of the design and operating effectiveness of controls to meet the criteria for the Security, Availability, and Confidentiality Trust Principles set forth in TSP section 100, Trust Services Criteria, and Illustrations for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, Technical Practice Aids) throughout the period.