• Glossary

Service Organization Controls. Report on controls on service organization’s five criteria including security, availability, processing integrity, confidentiality, and privacy. 

  • Type I: Reports on controls at a service organization over security and confidentiality. 
  • Type II: Report on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls.