SOC 2 ATTESTATION
1WorldSync has obtained SOC 2 Type 1 attestation as of June 30, 2022.
An accredited auditory body, A-Lign, has examined 1WorldSync’s description of its Item Management Retailer Portal, Digital Asset Management, User Management Application, Communications Hub, and Data Sync Direct Services System as of June 30, 2022” based on the criteria for a description of a service organization’s system in DC section 200, 2018 Description Criteria for a Description of a Service Organization’s System in a SOC 2® Report (AICPA, Description Criteria).
They are of the opinion that in all material respects the suitability of the design of controls stated in the description as of June 30, 2022 provide reasonable assurance that 1WorldSync’s service commitments and system requirements were achieved based on the trust services criteria relevant to Security, Availability, and Confidentiality (applicable trust services criteria) set forth in TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (AICPA, Trust Services Criteria).
Learn more about the SOC 2 standard here.
ISO 27001 COMPLIANCE
ISO 27001 is an information security management system standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance. Compliance with this internationally recognized standard confirms that 1WorldSync’s security management program is comprehensive and follows leading practices.
1WorldSync ISO 27001 Certificate
Learn more about the ISO 27001 standard.
What does this certification and attestation mean to 1WorldSync customers?
This certification and attestation demonstrates 1WorldSync’s continued commitment to information security at every level and ensures you that the security of your data and information has been addressed, implemented, and properly controlled in all areas of our organization. Achieving ISO/IEC 27001 certification and SOC 2 attestation is an ongoing investment and commitment that 1WorldSync has made to ensure that customers can rely on our Trusted Product Data.
Who issued the certification and attestation?
1WorldSync’s certification and its attestation report are both issued by A-lign, an independent and accredited certification body based in the United States, on successful completion of formal audit processes.
What 1WorldSync services are in-scope for the certification?
Item Management, Retailer Portal, Digital Asset Management, User Management Application, Communications Hub and Data Sync Direct Services hosted in the Cyxtera Data Center (CH3), Elk Grove Village, IL and Cyxtera Data Center (NJ3), Piscataway, NJ and Google Cloud US data centers.