Joseph, Mann & Creed (JMC) Obtains SSAE16 Certification

Share Article

SS&G, Inc. Issues SOC II Report on the system controls intended to meet the criteria for the security, processing, integrity, and confidentiality principles at Joseph, Mann & Creed.

Joseph, Mann & Creed, an international accounts receivable company based in Shaker Heights, Ohio, today announced that the company has undergone a SSAE 16 examination resulting in a SOC II report stating that management of Joseph, Mann and Creed maintained effective controls over the security, processing, integrity, and confidentiality principles set forth in TSP section 100. The engagement was performed by SS&G, Inc.

A SOC II report is designed to meet the needs of existing or potential customers who need assurance about the effectiveness of controls at a service organization that are relevant to the security, availability, or processing integrity of the system used by the service organization to process customers’ information, or the confidentiality or privacy of that information.

“We are pleased that our SOC II report has shown that we have the appropriate controls in place to mitigate risks related to security, processing, integrity, and confidentiality principles,” said Bill Mann, CFO and Co-Owner of Joseph, Mann & Creed. The successful completion of the voluntary audit illustrates JMC’s ongoing commitment to create and maintain the most stringent controls for the protection and security of our clients’ confidential information. Providing assurance to our clients that we employ the controls and safeguards needed to protect their data.

The following principles and related criteria have been developed by the American Institute of CPA’s (AICPA) and the Canadian Institute of Chartered Accounts (CICA) for use by practitioners in the performance of trust services engagements:

  •     Security. The system is protected against unauthorized access (both physical and logical).
  •     Availability. The system is available for operation and use as committed or agreed.
  •     Processing integrity. System processing is complete, accurate, timely and authorized.
  •     Confidentiality. Information designated as confidential is protected as committed or agreed.
  •     Privacy. Personal information is collected, used, retained, disclosed and destroyed in conformity with the commitments in the entity’s privacy notice and with criteria set forth in generally accepted privacy principles issued by the AICPA and CICA.

A SOC II report is an internal control report on the services provided by a service organization to its customers and provides valuable information that existing and potential customers of the service organization need to assess and address the risks associated with an outsourced service.

Current and prospective customers interested in a copy of our SOC II report may contact Bill Mann.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Bill Mann

Bill Mann
Visit website