CafeX Achieves SOC 2 Type 1 Certification
New York, New York – CafeX Communications, Inc., a leading provider of cloud-based solutions for communications platform as a service (CPaaS), today announced that it has successfully completed a System and Organization Controls (SOC) 2® Type I Audit examination for its flagship products: Live Assist for Dynamics 365, CafeX Meetings and CafeX Spaces.
The SOC 2® Type I report is performed by an independent auditing firm and is intended to provide an understanding of the service organization’s suitability of the design of its internal controls. A service organization may select any or all of the trust service principles that may be applicable. CafeX chose to report on security, availability, and confidentiality. The successful completion of this voluntary engagement illustrates CafeX’s ongoing commitment to create and maintain a secure operating environment for confidential customer data.
CafeX retained Skoda Minotti for its SOC 2® audit work based on the firm’s reputation as a leading risk advisory and compliance company.
Ben Osbrach, CISSP, CISA, QSA, CICP, CCSFP, partner-in-charge of Skoda Minotti’s risk advisory group stated, “We were excited to work with CafeX from the very start. CafeX is a leading organization in delivering advanced communications services for enterprises, and its business adds to our growing SOC reporting practice.”
SOC 2® engagements are performed in accordance with the American Institute of Certified Public Accountants’ (AICPA) AT-C 205, Reporting on Controls at a Service Organization, and are based on the trust service principles outlined in the AICPA Guide, Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy.
Skoda Minotti’s testing of CafeX’s controls included examination of the company’s policies and procedures regarding network connectivity, firewall configurations, systems development life cycle, computer operations, logical access, data transmission, backup and disaster recovery, and other critical operational areas. Upon completion of the audit, CafeX received a Service Auditor’s Report with an unqualified opinion demonstrating that the company’s policies, procedures, and infrastructure meet or exceed the stringent SOC 2® criteria.
“The successful completion of our SOC 2® Type I examination audit provides CafeX’s customers with the assurance that the controls and safeguards we employ to protect and secure their data are in line industry standards and best practices,” said Rob Hill, Information Security and Compliance Director.
About Skoda Minotti
Skoda Minotti is a Certified Public Accounting Firm based in Cleveland, OH offering a variety of tax, finance, and business advisory services in virtually every area of business. The Risk Advisory practice specializes in SOC Reporting, PCI DSS Compliance, FISMA, NIST, and other regulatory information security assessments. Staff in Skoda Minotti’s Risk Advisory hold several industry certifications including Certified Information Systems Auditor (CISSA), Certified Information Systems Security Professional (CISSP), Qualified Security Assessor (QSA), GIAC Penetration Tester (GPEN), and GIAC Web Application Penetration Tester (GWAPT). For more information about Skoda Minotti’s Risk Advisory Services, please visit risk.skodaminotti.com.
About CafeX Communications
CafeX is a leading provider of communications platform as a service (CPaaS) solutions for top brands around the world. The cloud-based software company provides an engagement platform that makes it effortless for organizations to embed communication capabilities within business applications. CafeX provide a low barrier to entry for companies looking to accelerate business performance by creating frictionless and personalized digital experiences for customers, employees and teams. For more information, please visit www.cafex.com.
CafeX Communications is a registered trademark of CafeX Communications, Inc. All other trademarks are the property of their respective owners.