WHAT IS SSAE 18 SOC 2?

Statement on Standards for Attestation Engagements 18 (SSAE 18) is a standard from the American Institute of Certified Public Accountants (AICPA) to evaluate service companies. Although not required, any company that provides outsourced services can perform an audit based on these standards. Each year, Prelude completes a Service and Organization Controls (SOC) 2 audit, which focuses on security, availability, processing integrity and confidentiality.

This audit of our IT controls and processes ensures that we:

• Protect data from unauthorized access
• Make information and services readily available
• Run systems that perform their functions correctly
• Keep confidential information confidential
• Remain accountable to our mission of giving our customers control over who can use their data.

The report that results from this audit is shared with our clients, who often share the report with their 3rd party financial auditor as evidence of non-financial controls over data. Prelude consistently achieves a strong SOC 2 Report, which is an indicator of our effective measures to protect critical data from breach or exposure. In addition to our regular service level reporting, the SOC 2 report is an additional reporting tool to confirm your service is being provided by a strong partner.