Independent Audit Verifies CBOSS’ PCI Compliance

Boardman, OH – CBOSS, a payment processor, today announced that it has once again completed its PCI audit and received their Report on Compliance (RoC). This report verifies that CBOSS adheres to the Payment Card Industry Security Data Standard’s twelve requirements and has the proper internal controls and processes in place to deliver high quality services to its clients.

KirkpatrickPrice, a licensed CPA and PCI QSA firm, performed the audit and appropriate testing of CBOSS’ controls that are relevant to the storing and transmitting of information from credit, debit, or other payment cards. The PCI Data Security Standard is a complex security standard that focuses on security management, policies, procedures, network architecture, software design, and other critical protective procedures.  These security standards are relevant to any merchant or service provider that uses, stores or transmits information from a payment card. In accordance with the PCI Security Standards Council, KirkpatrickPrice’s Qualified Security Assessors assisted CBOSS in becoming PCI compliant.

“CBOSS is committed to delivering robust, secure solutions for payment processing to all our customers,” stated Mike Lendvay, Security & Compliance Manager for CBOSS, Inc. “To that end, we strive to make security and reliability integral to every aspect of our operations. We appreciate the KirkpatrickPrice’s thoroughness and we are proud to have met or exceeded all the requirements they validated.”

“Many of CBOSS’ clients rely on their systems to process or store sensitive data and protect information,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “As a result, CBOSS has implemented best practice controls demanded by their customers to address information security and compliance risks. Our third-party opinion validates these controls and the tests we perform provide assurance regarding the accounts receivables management services provided by CBOSS.”

About CBOSS

The expertise of CBOSS’ specialists empowers all of its clients to focus on their core business.

Since 1994 over 700 businesses and government agencies have looked to CBOSS to deliver feature-rich services and solutions that are cost-effective, reliable and secure.  CBOSS is the leading provider of PCI DSS-compliant, secure online payment solutions for various industries, including healthcare, government and regulated industries. Visit us at www.cboss.com

Independent Audit Verifies National Commercial Services’ Internal Controls and Processes

Van Nuys, CA – National Commercial Services (NCS) an experienced and specialized subrogation and commercial collection agency, today announced that it has completed its annual SOC 1 Type II audit. This attestation verifies that NCS has the proper internal controls and processes in place to deliver high quality services to its clients.

KirkpatrickPrice, a licensed CPA firm, performed the audit and appropriate testing of NCS’ controls that may affect its clients’ financial statements. SOC 1 Type II is a reporting on the controls at a service organization that was established by the American Institute of Certified Public Accountants (AICPA). This report is in compliance with the SSAE 18 auditing standards and focuses on the controls of a service organization that are relevant to an audit of a user entity’s financial statements. The standard demonstrates that an organization has adequate controls and processes in place. The SOC 1 Type II audit report includes NCS’ description of controls as well as the detailed testing of its controls over a minimum six-month period.

“NCS is committed to providing our clients with the most secure, while efficient, collection and subrogation services nationally. Completing the SOC 1 Type II audit is part of the regulatory framework recommended to provide secure services to both our clients and the public. NCS will continue to renew our SOC certification on an annual basis to verify that we stay abreast of industry and standard improvements,” said Natalie Mansour, Vice President and Chief Operating Officer of NCS.

“Many of NCS’ clients rely on them to protect consumer information,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “As a result, NCS has implemented best practice controls demanded by their customers to address information security and compliance risks. Our third-party opinion validates these controls and the tests we perform provide assurance regarding the managed solutions provided by NCS.”

About National Commercial Services

National Commercial Services (NCS) is a California Certified Corporation located in Los Angeles County. With 23 years of experience in the fields of Subrogation and Commercial Collections, NCS is a Premier Sponsor of the National Association of Subrogation Professionals and is licensed and bonded in every mandated state. NCS is dedicated to compliance with Federal and State Specific Fair Debt Collection, TCPA, PCI, and all best practices protocol.

Independent Audit Verifies Inovatec Systems Internal Controls and Processes

Burnaby, BC Inovatec, a cloud-based software solutions provider, today announced that it has completed its SOC 1 Type II and SOC 2 Type II audits. These attestations demonstrate Inovatec’s unwavering commitment to high-quality service for its clients by ensuring necessary internal controls and processes are in place.

KirkpatrickPrice, a licensed CPA firm, performed the audit and appropriate testing of Inovatec’s controls that may affect its clients’ financial statements. SOC 1 Type II is a report on the controls at a service organization that was established by the American Institute of Certified Public Accountants (AICPA). This report follows the SSAE 18 auditing standards and focuses on the controls of a service organization that are relevant to an audit of a user entity’s financial statements. The standard demonstrates that an organization has adequate controls and processes in place. The SOC 1 Type II audit report includes Inovatec’s description of controls as well as the detailed testing of its controls over a minimum six-month period.

SOC 2 engagements are based on the AICPA’s Trust Services Criteria. The SOC 2 service auditor report focuses on a service organization’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality and privacy of a system. KirkpatrickPrice’s service auditor report verifies the suitability of the design and operating effectiveness of Inovatec’s controls to meet the standards for these criteria.

“The successful completion of our SOC 1/2 Type II examination audits provides our clients with the assurance that the controls and safeguards we employ to protect and secure their data are in line with industry standards and best practices,” said Christian Reina, CISSP, CISM, CRISC, CISA, Information Security Officer at Inovatec.

“Many of Inovatec’s clients rely on them to protect consumer information,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “As a result, Inovatec has implemented best practice controls demanded by their customers to address information security and compliance risks. Our third-party opinion validates these controls and the tests we perform provide assurance regarding the managed solutions provided by Inovatec.”

About Inovatec

Inovatec Systems provides industry leading, cloud-based software solutions for any financial institution, any type of transaction. All solutions can be brought together in a single seamless and branded platform that can be opened to external partners and customers. Capture any marketplace – Full, robust ecosystem to drive the online customer/lead to you, streamline and facilitate the processes of crediting, auditing, funding and income verification for financing applications plus full servicing & portfolio analytics in the leading-edge LMS.

Independent Audit Verifies SightCall’s Internal Controls and Processes

San Francisco, CA – KirkpatrickPrice announced today that SightCall, a global cloud software company that empowers businesses with visual support capabilities, has again received its annual SOC 2 Type II attestation report. This attestation provides evidence that SightCall has a strong commitment year-over-year to deliver high quality services to its clients by demonstrating they have the necessary internal controls and processes in place.

SOC 2 engagements are based on the AICPA’s Trust Services Criteria. SOC 2 service auditor reports focus on a service organization’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system. KirkpatrickPrice’s service auditor report verifies the suitability of the design and operating effectiveness of SightCall’s controls to meet the standards for these criteria.

“Securing this attestation reinforces SightCall’s mission as a trusted, reliable and customer-focused organization,” stated Matthieu Piquet, Head of Security and Program Management at SightCall. “Compliance and security are one of our main commitments and are critical to building trust and providing an excellent customer experience. It’s one thing for us to say that our security and processes meet and exceed industry standards. It’s another to provide independent verification from an expert. This is why we choose KirkpatrickPrice to perform our SOC 2 Type II audits.”

“The SOC 2 audit is based on the Trust Services Criteria,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “SightCall delivers trust-based services to their clients, and by communicating the results of this audit, their clients can be assured of their reliance on SightCall’s security and controls.”

About SightCall

SightCall is a global video cloud platform with a decade of experience enabling visual support interactions for enterprises in over 90 countries around the world. Enhanced by Augmented Reality (AR) and Artificial Intelligence (AI), the visual support technology digitally transforms service organizations, notably improving first time fix rates, decreasing truck rolls and increasing NPS. SightCall is headquartered in San Francisco with offices in NYC, Boston, Paris, London, Frankfurt and Singapore. For more information, visit: www.sightcall.com, follow SightCall on Twitter (@SightCall) or connect with SightCall on LinkedIn.

About KirkpatrickPrice

KirkpatrickPrice is a licensed CPA firm, PCI QSA, and a HITRUST CSF Assessor, registered with the PCAOB, providing assurance services to over 800 clients in more than 48 states, Canada, Asia, and Europe. The firm has more than a decade of experience in information security and compliance assurance by performing assessments, audits, and tests that strengthen information security and internal controls. KirkpatrickPrice most commonly provides advice on SOC 1, SOC 2, PCI DSS, HIPAA, HITRUST CSF, GDPR, ISO 27001, FISMA, and CFPB frameworks. For more information, visit www.kirkpatrickprice.com, follow KirkpatrickPrice on Twitter (@KPAudit), or connect with KirkpatrickPrice on LinkedIn.

Independent Audit Verifies Eon’s Internal Controls and Processes

Denver, CO – Eon, a healthcare IT company, identifies patients at risk for future disease and longitudinally tracks care, today announced that it has completed its SOC 2 Type II audit. This attestation provides evidence that Eon has a commitment to deliver high quality healthcare services to its clients and demonstrates they have the necessary internal controls and processes in place to protect healthcare data.

Earlier this year, Eon received its SOC 2 Type I attestation and the continuation to the Type II audit proves Eon’s strong commitment to security. SOC 2 engagements are based on the AICPA’s Trust Services Criteria. SOC 2 audit reports focus on a service organization’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system. A SOC 2 Type II report is an attestation of controls at a service organization over a period of time as opposed to a point in time. KirkpatrickPrice’s audit report verifies the suitability of the design and operational effectiveness of Eon’s controls to meet the SOC 2 standards.

“We see many healthcare security breaches due to lax policy controls, and surprisingly, still see cloud vendors ride the coattails of their data center’s security certification without employing their own rigorous controls,” says Eon founder and co-CEO, Akrum Alzubaidi, DO, FCCP. “As Eon continues to enable large and small hospital systems to remove data silos, SOC 2 assurances are now the expectation from our clients. Achieving this milestone demonstrates our commitment to making large scale patient management platforms safe and adoptable enterprise wide solutions.”

“The SOC 2 audit is based on the Trust Services Criteria. Eon has selected the security and availability categories for the basis of their audit,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “Eon delivers trust-based healthcare services to their clients, and by communicating the results of this SOC 2 Type II audit, their clients can be assured of their reliance on Eon’s controls.”

About EON

Eon is a Denver-based healthcare technology company dedicated to defying disease by revolutionizing the way healthcare data is gathered, curated, and shared among healthcare professionals. This ensures the right data reaches the right people at the right time. Eon is expanding outside of lung and moving into additional incidental disease identification and management and will become a comprehensive incidental platform to better manage patients at-risk for disease. For more information visit www.EonHealth.com or contact info@Eonhealth.com and follow Eon on LinkedIn and Twitter.

About KirkpatrickPrice

KirkpatrickPrice is a licensed CPA firm, PCI QSA, and a HITRUST CSF Assessor, registered with the PCAOB, providing assurance services to over 900 clients in more than 48 states, Canada, Asia, and Europe. The firm has more than a decade of experience in information security and compliance assurance by performing assessments, audits, and tests that strengthen information security and internal controls. KirkpatrickPrice most commonly provides advice on SOC 1, SOC 2, PCI DSS, HIPAA, HITRUST CSF, GDPR, ISO 27001, FISMA, and CFPB frameworks. For more information, visit www.kirkpatrickprice.com, follow KirkpatrickPrice on Twitter (@KPAudit), or connect with KirkpatrickPrice on LinkedIn.