Adequate internal IT controls exist

SOC 3 is an assurance standard, designed to ensure that adequate internal IT controls exist. It relates to: security, availability, privacy, confidentiality and processing integrity.

TechnologyOne acquired this standard in 2018. The Service Organisation Control 3 (SOC 3) report outlines information related to TechnologyOne's internal controls for security, availability, privacy, confidentiality and processing integrity.

The TechnologyOne SOC 3 report can be requested by any current contracting customer by raising a SOC 3 report request case in the Customer Community.

If you are the registered auditor for a current TechnologyOne customer please speak with them directly to obtain a copy.

If you are a prospective customer, please reach out to your Customer Account Manager to obtain a copy.

Adequate internal IT controls exist

Our accreditations

ISO/IEC 27001

ISO/IEC 27017

ISO/IEC 27018

ISAE 3402 SOC 1

SSAE 18 SOC 1

AT-C 205 SOC 2 + HIPAA

SOC 3

IRAP

GDPR

Australian Cyber Security Centre (ACSC) Essential 8

Cyber Essentials (UK)

National Cyber Security Centre (NCSC) Cloud Security Principles (UK)

PCI Compliance Information

Payment Card Industry (PCI-DSS)

Still have questions?