Ixilix - Compliance-Based On Demand Hosting & Managed Services

SAS 70 Overview

The Section 404 requirements of Sarbanes Oxley require effective controls on the reporting of financial data. SAS 70 Type II certification provided by an outside auditor is generally considered proof of adequate controls within a company's IT infrastructure.

The Statement on Auditing Standards (SAS) No. 70, Service Organizations, is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). A SAS 70 audit is widely recognized, because it represents that a service organization has been through an in-depth audit of their control objectives and control activities, including controls over information technology and related processes.

If your business is a public company, or provides IT systems and services to a public company, your managed service provider (MSP) should be SAS 70 Type II certified. It is good practice to only use certified MSPs, even for small applications such as web sites.

Ixilix is SAS 70 Type II certified and will provide a copy of an outside auditor's report upon request. To download an overview of major regulatory compliance standards, please click here.