OnCorps Compliance and Certification

Credentials Reflect Our Commitment to Security and Privacy

Our strict compliance program consists of third-party audits and international certifications to ensure data security and privacy, protect against security threats or data breaches, prevent unauthorized access to customer data and generally ensure that the controls that we have instituted are effective.

SOC 1

Service Organization Controls (SOC) 1 reports provide information about a service organization’s control environment that may be relevant to the customer's internal controls over financial reporting.Our SOC 1 Type II report is issued in accordance with the International Standard on Assurance Engagements (ISAE) 3402 (Assurance Reports on Controls at a Service Organization) and Statement on Standards for Attestation Engagements 18 (SSAE 18) established by The American Institute of Certified Public Accountants (AICPA). The SOC 1 report covers the design and operating effectiveness of controls relevant to OnCorps’ enterprise cloud applications.

ISO 27001

ISO 27001 is a standardized framework that is designed to manage and protect sensitive information. It provides a systematic approach for identifying, analyzing, and addressing potential security risks to ensure that confidential information is secure at all times. By implementing ISO 27001, OnCorps reduces risk and liability and enhances customer trust. This standard also serves as a tool for continuous improvement, allowing OnCorps to constantly monitor and improve our security processes and monitor evolving threats. Our Information Security Management System (ISMS) meets the requirements set forth by this globally recognized, standards-based approach to security.