ParcelShield’ SOC 2 Type II certification provides objective, third-party validation that the company maintains exceptional standards in information management and security. Security and privacy controls are audited yearly by an independent 3rd party to verify that technology, processes, and procedures are in place and being followed.
ParcelShield performs internal testing of key security and privacy controls to validate adherence to established frameworks. This includes third party security penetration testing on an annual basis. Controls include the implementation of policies to ensure that confidential and sensitive information is secured:
- Data Privacy
- Access Management
- Logical and Physical Access
- Password Management
ParcelShield has established policies and procedures for physical security including:
- Physical Access Policy
- Facility Management Policy
- Facility Card Access System
- Managed Data Center Policy
- Visitor Procedure and Logs
ParcelShield has implemented a variety of monitoring controls to ensure systems and infrastructure remain secure. The monitoring controls include:
- Performance monitoring
- Access control/log monitoring
- Intrusion Detection Systems (IDS)/Intrusion Prevention Systems (IPS) monitoring
- End-point monitoring
- Anti-virus and malware monitoring
The results are communicated to executive management; remediation efforts are monitored, and controls are re-tested as required to ensure compliance.
Developed by the American Institute of Certified Public Accountants (AICPA), the SOC 2 Type II audit assesses a wide range of controls relating to the security, availability, and data confidentiality of a company’s information technology systems, as well as processing integrity and privacy.
You may request a summary of our SOC 2 Type II report through your ParcelShield account team.