SAS 70 Certified
Voonami has successfully achieved a SAS 70 audit over specified controls in our secure, reliable, high-availability data centers. The Cadence Group, an independent CPA firm performed a rigorous audit of Voonami’s internal control environment for secure and reliable data center operations. The Cadence Group conducted the SAS 70 audit, which included an independent assessment of the controls and corresponding report of Voonami's data center controls with no exceptions noted.
What is SAS 70?
Statement on Auditing Standards No. 70, commonly referred to as SAS 70, is an auditing statement developed by the American Institute of Certified Public Accountants (AICPA). SAS 70 is designed to allow auditors to review the controls established by service organizations. Independent auditors review the control objectives and activities to ensure the controls are valid and enforced.
A control is a method used to ensure a policy and/or procedure established by a service organization is followed. Controls are in place at Voonami to ensure our customer computing platforms and data are protected. Voonami’s controls include building access/security, datacenter access/security, power and network infrastructure, data storage, and customer information security.
There are two types of SAS 70 auditor reports, Type I and Type II.
- Type I audits focus on the validity of the controls in operation at the service organization to ensure they complete the specified control objectives.
- Type II audits focus on the Type 1 controls that are in place as well as how they are executed over a specific period of time.
What this means for Voonami
As a service organization, Voonami can (upon request) review a copy of the SAS 70 audit report with user organizations to verify our processes and procedures (controls) are adequate for their dedicated and/or colocation hosting needs.
Ongoing SAS 70 audits will ensure Voonami is keeping their policies and procedures up to date as technology and business needs change.
