Jun 30 2010
DataCare Corporation (http://www.datacare.com), the leader in web-based workers' compensation software, today announced it has successfully completed a Type II SAS 70 audit of Ahshay -- the company's electronic workplace application. The resulting Independent Service Auditor's Report certified that DataCare follows required procedures, has solid security controls, and protects clients' data in accordance with best practices.
The Statement on Auditing Standards number 70 (SAS 70) is an auditing statement issued by the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA). SAS 70 defines the professional standards used by a service auditor to assess the internal controls of a service organization and issue a report.
"The workers' compensation industry has complex security and privacy regulations," said Paulo Franca Ph.D., DataCare's President and Chief Technology Officer. "Our SAS 70 Type II audit is another example of DataCare's commitment to maintaining the highest standard of security and compliance for our customers."
The Type II SAS 70 audit report on DataCare addresses all five components of internal controls outlined in the Sarbanes-Oxley legislation: control environment and activities, risk-assessment activities, information and communication systems, and monitoring activities. DataCare's customers can easily incorporate this new audit report into their overall Sarbanes-Oxley compliance documentation as proof that appropriate controls are in place.
The Type II SAS 70 audit on DataCare was performed by Burr Pilger Mayer, Inc. (http://www.bpmllp.com), which tested the controls in practice during a review period from October 1, 2009 to March 31, 2010.