EthosCE Achieves SOC Type 2 Compliance
DLC Solutions is pleased to announce that it has received a favorable SOC Type 2 report for its EthosCE Learning Management System. No exceptions were noted by the auditor.
“Security is the most important thing we do at EthosCE, and we are dedicated to ensuring our customers’ data is secure and confidential,” said Ezra Wolfe, CTO of DLC Solutions, LLC.
“SOC Type 2 compliances demonstrate how important we think this is to our customers and prospects and gives them assurance that we are following through on our commitment. We look forward to renewing this certification every year.”
What is a SOC Type 2 report?
A SOC Type 2 report is based on the Trust Services Criteria, which provide the structure for testing and reporting on the operating effectiveness of a service organization’s controls. The SOC Type 2 report focuses on a business’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system. The EthosCE SOC Type 2 report audited the security and confidentiality of the system.
The SOC Type 2 report is done by an independent auditing firm accredited by the American Institute of Certified Public Accountants. The auditors help organizations determine whether their information security controls provide the proper amount of protection for data and systems.
The auditing firm reviews the organization’s controls and adherence to those controls before determining whether a company meets SOC Type 2 compliance criteria.
The primary difference between a Type 1 and Type 2 report is that for a Type 2 audit, the auditor reviews the organization’s controls over a period of time to determine if they are consistently followed. A Type 1 audit only looks at the controls at a single point in time.
With a Type 2 audit, the auditor reviews how the security controls operate in practice, rather than in a design plan. Yearly certification is required for this type of compliance.
A SOC Type 2 audit is a clear demonstration of EthosCE’s dedication to security and confidentiality. The audit was completed by IS Partners. DLC Solutions, LLC is the only SOC Type 2 compliant organization offering a learning management system in continuing healthcare education.