NOVAtime has successfully completed an independent audit of SSAE 18 SOC 1 Type II and SOC 2 Type II compliance. In addition, NOVAtime SaaS solution is hosted at an SSAE 18 SOC 1 Type II and SOC 2 Type II compliant data center.
Utilizing the SSAE 18 auditing standard, SOC 1 reports on the controls at a service organization relevant to user entities' internal control over financial reporting (ICFR). A Type II report contains information on the fairness of the presentation of management's description of the service organization's system and the suitability of the design and operating effectiveness of the controls to achieve the related control objectives included in the description throughout a specified period.
SOC 2 reports on the controls at a service organization relevant to security, availability, processing integrity, confidentiality, and privacy. These reports are intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to security, availability, and processing integrity of the systems the service organization uses to process users' data and the confidentiality and privacy of the information processed by these systems. Similar to SOC 1 Type II, the SOC 2 Type II reports on management's description of a service organization's system and the suitability of the design and operating effectiveness of controls.
The successful completion of this external audit is evidence of the world-class integrity of our operating procedures and quality of our technology. It affirms NOVAtime's commitment to meet the highest industry standards for delivering and operating our managed timekeeping services