Data Facts, a nationwide provider of background screening and lending solutions services, has completed the Service Organization Controls (SOC) 1 and 2 data security examinations as key initiatives in its plan to always lead the industry in consumer privacy best practices.
The thorough analysis of Data Facts’ multi-level IT data security controls and final attestation of SOC 1 and SOC 2 compliance were executed by 360 Advanced, Inc., a national, multi-service, licensed Certified Public Accountant (CPA) and Qualified Security Assessor (QSA) firm that specializes in integrated compliance solutions for service providers.
A founding member of the National Association of Professional Background Screeners, Data Facts is in the business of providing consumer and business information to lenders and employers so they can make sound lending, hiring and other business decisions.
“Data Facts has always been an early adopter of best practices in consumer privacy and data security,” declared Daphne Large, President and CEO. “However, nothing is more important when you are dealing with this type of highly confidential data than not only having in-house best practices, but proving it and demonstrating it through third party auditing.”
Ms. Large said achieving the SOC 1 and 2 designations, along with the firm’s reputation for having a culture of dedication to the highest standards of data security and privacy, provide Data Facts a clear competitive advantage. “When customers and prospects begin comparing apples to apples, they find value in companies that have made this investment and this commitment, not only financially, but with best practices and constant compliance initiatives,” she commented.
Johnna Leeds, Data Facts’ Vice President of Compliance, said the year-long process of earning the SOC 1 and 2 designations was rigorous and demanding, and strengthened even more the company’s dedication to data security at all levels. “And, this process validates that Data Facts is committed to service excellence, accountability and high ethical and operational standards,” Ms. Leeds said.
“If you place yourself in the role of the consumer, and we have to do that, then it is not just about business,” commented Ms. Large. “We all are also consumers, and we are constantly asking ourselves how we can trust that every effort is being made to handle consumer data with complete confidentiality and privacy. The answer is that we are constantly taking steps, such as the SOC 1 and 2 designations, to achieve that objective.”