In January 2010, the Statement on Standards for Attestation Engagements (SSAE) No. 16, which reports on controls adhered to by service organizations, was finalized by the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA). SSAE 16 effectively replaced SAS 70 as the authoritative guidance for reporting on the processes and security measure employed by service organizations managing client data.
SSAE 16 was drafted with the intention and purpose of updating the US service organization reporting standard so that it mirrors and complies with the new international service organization reporting standard – ISAE 3402. SSAE 16 also established a new Attestation Standard called AT 801 which contains guidance for performing services under an external auditor’s examination.
To ensure our compliance with this important standard, BackupSilo’s technology platform has received and successfully passed its SSAE 16 examination. This Service Auditor’s Report with an unqualified opinion that is issued by an Independent Auditing Firm differentiates our services from peers by demonstrating the creation of control objectives and effectively designed control activities. It’s designed to cement trust with user organizations, including our partners and customers.
SSAE 16 engagements are generally performed by audit, risk, and control oriented professionals who have experience in accounting, auditing, and information security. SSAE 16 engagements of our hosting platform evaluated and tested by an independent party shows BackupSilo has the required control policies and procedures in place at all times. The process also helps identify opportunities for improvement in a variety of operational areas, which helps our deliver of secure cloud backup and data recovery services get even better.