After an extensive audit of Century Direct’s standard operating controls regarding its data security by Buchbinder Tunick & Company, LLP, the auditing firm has issued an unqualified opinion that Century Direct’s processes and controls involving its transmission, use, storage and destruction of data were fairly described and operated effectively to provide assurance that data security objectives were achieved throughout the period April 1, 2016 to March 31, 2017.
“We know how important data security is to our customers, large and small,” said Jerry Nassau, President of Century Direct. “Customer lists, personal health information and financial information are all valuable data. We have developed well structured and monitored controls to make sure our customers’ data remain secure while entrusted to us. Our controls are designed to create a safe environment for that data while we utilize it to create personalized communications and maximize postal savings. We invited the professional Buchbinder firm to come in to test our processes and controls. They were satisfied that our controls meet our security objectives and issued a report stating that.”
As part of the audit, the Buchbinder firm examined the flow of data into Century Direct via a secure ftp portal, its methods of storage, retrieval and use of data during the workflow processes, encryption of data at rest and the secure destruction of data upon job completion. The firm also examined the organizational chart and the employees responsible for that data throughout the workflow and their access to it.
“Century continues to review and enhance its data security processes,” said Mr. Nassau. “It is our intention to remain a best in class marketing services firm and data security is a big piece of that equation. Security threats are top of mind to marketing and communications professionals. Our emphasis in this area differentiates us from many of our competitors and purveyors of direct mail services.”
Century Direct, established in 1932, specializes in database management, digital and offset printing, mailing and packaging services. The SOC 1 Type 2 audit will be repeated annually.Tags: Century Direct, data security, SOC 1 Type 2 audit
Categorized in: News
This post was written by MIchael Kellogg