SoftwareONE puts a strong emphasis on quality, environment and information security. For this reason, we have ourselves certified annually by TÜV Süd. You will find the currently valid certificates for our respective branch in the language of your choice in the list below:
The Management of Information Security applies to all Information assets pertaining to PyraCloud, SLMAdvanced, SAMSimple, Cloud Support, Business IT (BiT) and Security Operations Centre (SOC), SAP Services (in selected locations), with supporting functions including Human Resources (HR), Administration (ie., Facility Management), Legal and Finance.
ISO/IEC 27017:2015 – Information Security Controls for Cloud Services
For Information Security Controls applicable to the all Information Assets pertaining to Managed Cloud Services (Supplying, Implementing and Maintenance) and Supporting Functions (Risk & Internal Audit, Human Resources, Administration/Facilities Function).
SOC2 Type II report provides an independent assessment of SoftwareONE’s security and privacy control environment. SOC2 Type 2 report covers the AICPA’s (The American Institute of Certified Public Accountants) Trust Services Principles and Criteria for Security, Availability, Confidentiality, and Privacy. The assessment is an independent opinion on the design and operational effectiveness of the same.
The SOC2 Type II report is available for SoftwareONE clients upon request.
SOC3 report is a generic report that is designed to meet the needs of users who need assurance about the controls at a service organization relevant to security, availability, processing integrity confidentiality, or privacy, but do not have the need for or the knowledge necessary to make effective use of a SOC2 report. The assessment is an independent opinion on the design and operational effectiveness of the same.
The SOC3 report is available here for SoftwareONE clients.