Headline News
US Micro Achieves Privacy Validation
2/2/2012
IT asset disposition company is recognized by the American Institute of Certified Public Accountants for its security protocols.
The IT asset disposition company U.S. Micro Corp., based in Las Vegas, reports that it has achieved the American Institute of Certified Public Accountants' (AICPA) Service Organization Controls (SOC) 2, Type II, designation. U.S. Micro says it earned the validation of its controls relevant to security, processing integrity and confidentiality after undergoing an intensive examination.
A SOC 2, Type II, examination is intended to help stakeholders understand a company's internal controls related to security, availability, processing integrity, confidentiality and privacy. Examinations must be performed by an independent, certified auditor in accordance with attestation standards established by the AICPA.
According to U.S. Micro, independent auditors evaluated and tested various U.S. Micro Corp. controls, including those related to data elimination, information security, disposition, electronic inventory counts, human resources, change management, information systems operations and required COSO-level controls.
Jim Kegley, founder, president and CEO of U.S. Micro, says, "Our board of directors and management decided to pursue SOC 2 because U.S. Micro's process and service offerings exceed the requirements of existing industry certifications and what our competitors offer. We wanted a highly respected third party to confirm what we offer customers. By earning this designation, we are raising the bar for IT asset disposition standards and vendors."
Kegley adds that third-party audits will become more prevalent. "Large companies—and increasingly smaller ones—want assurance that IT assets will be handled properly after retirement and won't end up costing millions and ruining their reputations if data is mishandled," he said. "Having a third party assessment of controls—like SOC 2—is an important evolution for the ITAD industry."