Security

SOC 2 ATTESTATION

1WorldSync has obtained SOC 2 Type 2 attestation for the period from July 1, 2022 to June 30, 2023.


Logo-AICPA-SOC-2022 Align SOC Certification Logo

An accredited auditory body, A-Lign, has examined 1WorldSync’s description of its Item Management, Retailer Portal, Digital Asset Management, User Management Application, Communications Hub, Data Sync Direct, SyncPDI, and Swogo Automated Bundling Services based on the criteria for a description of a service organization’s system in DC section 200, 2018 Description Criteria for a Description of a Service Organization’s System in a SOC 2® Report (AICPA, Description Criteria).

They are of the opinion that 1WorldSync management’s assertion that the controls within 1WorldSync’s Item Management, Retailer Portal, Digital Asset Management, User Management Application, Communications Hub, Data Sync Direct, SyncPDI, and Swogo Automated Bundling Services were suitably designed and operating effectively throughout the period July 1, 2022 to June 30, 2023, to provide reasonable assurance that 1WorldSync’s service commitments and system requirements were achieved based on the applicable trust services criteria is fairly stated, in all material respects, if complementary subservice organization controls and complementary user entity controls assumed in the design of 1WorldSync’s controls operated effectively throughout that period.

Learn moreabout the SOC 2 standard here. 


ISO 27001 COMPLIANCE

ISO 27001 is an information security management system standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance. Compliance with this internationally recognized standard confirms that 1WorldSync’s security management program is comprehensive and follows leading practices.

VIEW: 1WorldSync ISO 27001 Certificate

Learn more about the ISO 27001 standard.


Logo-Align-ISO-27001-2022-Certification Logo-ANAB-ANSI-National Accrediation Board

What does this certification and attestation mean to 1WorldSync customers?

This certification and attestation demonstrates 1WorldSync’s continued commitment to information security at every level and ensures that the security of your data and information has been addressed, implemented, and properly controlled in all areas of our organization. Achieving ISO/IEC 27001 certification and SOC 2 attestation is an ongoing investment and commitment that 1WorldSync has made to ensure that customers can rely on our Trusted Product Data.

Who issued the certification and attestation?

1WorldSync’s certification and its attestation report are both issued by A-lign, an independent and accredited certification body based in the United States, on successful completion of formal audit processes.

What 1WorldSync services are in-scope for the certification?

1WorldSync Product Content Management Systems within scope include: Item Management, Product Introduction, Digital Asset, User Management, Communications Hub, DSD and SyncPDI Product Information Management, and Swogo Automated Bundling Services hosted in the Cyxtera Data Centers (CH3 Elk Grove Village, IL and NJ3 Piscataway, NJ) Google Cloud, and AWS data centers.

Get in touch today to see how we can improve your product information management experience.