QTS Completes 2015 SOC 1® And SOC 2® Audits
Independent audit demonstrates QTS’ commitment to critical compliance standards.
QTS Realty Trust has completed its annual American Institute of Certified Public Accountants (AICPA) Service Organization Control 1 Type II (SOC 1® Type II) and Service Organization Control 2 Type II (SOC 2® Type II) audit reports. A Big Four public accounting and auditing firm issued the reports after an examination of QTS’ system of internal controls and procedures.
“QTS’ successful completion of the SOC 1 and 2 reports demonstrates our continued commitment to providing secure and reliable services that meet and exceed our customers’ compliance and security needs,” said Oliver Schmidt, chief audit executive – QTS. Schmidt leads QTS’ dedicated in-house compliance team.
QTS’ SOC 1® Type II and SOC 2® Type II reports are assurance that QTS’ meets the suitability of design and operating effectiveness of applicable controls. Completing the SOC reports, as well as critical compliance requirements such as HIPPA, FedRAMP, FISMA, PCI, demonstrates QTS’ ability to mitigate security and availability risks.
Schmidt added, “The regulatory compliance, security and controls related to protecting data and systems are top priorities for today’s enterprises, and QTS is committed to the logical and physical security of its customers’ data assets.”
The QTS SOC 1® Type II is prepared in accordance with the AICPA’s Statement on Standards for Attestation Engagements (SSAE) No.16 Reporting on Controls at a Service Organization and covers the period from October 1, 2014 to September 30, 2015 and included controls relative to QTS’ colocation and custom data center services.
The QTS SOC 2® is prepared in accordance with the Trust Services Principles and Criteria for security, availability, and confidentiality and covers the period from October 1, 2014 to September 30, 2015 for QTS systems and controls and provides users with operational assurance across QTS’ 3C platform — custom data center (C1), colocation (C2) and cloud and managed services (C3).