Enterprise-Grade Security, Visibility, and Control

Manage your files, users and communications with the security your business needs.
Our top priority is the safety, security, and control of our customers' data.
Your business is always secure with AuditFile.

Controls and Encryption

AuditFile uses enterprise-grade security and administrative controls. AuditFile uses encryption technology, such as Secure Socket Layer (SSL), on its website to transmit information between users and AuditFile. This protects data in three key ways:
  1. Authentication ensures that you are communicating with us and prevents another computer from impersonating AuditFile.
  2. Encryption scrambles transferred data so that it cannot be read by unauthorized parties.
  3. Data integrity verifies that the information you send to AuditFile is not altered during the transfer. The system detects if data was added or deleted after you sent the message. If any tampering has occurred, the connection is dropped.
AuditFile’s security practices are in the process of being verified by a SOC2 report by the public accounting firm Moss Adams.

Automated Backups and Disaster Recovery Systems

Full backups run nightly.

If you currently keep data on your own computers or in your office, you are nowhere near as secure as keeping your data with AuditFile. The odds of your computer getting damaged or stolen, is a matter of when not if.

Data storage

Your data is stored in world-class data centers operated by Amazon Web Services.

Amazon Web Services (AWS) has successfully completed multiple SAS70 Type II audits, and now publishes a Service Organization Controls 1 (SOC 1), Type 2 report, published under both the SSAE 16 and the ISAE 3402 professional standards as well as a Service Organization Controls 2 (SOC 2) report. In addition, AWS has achieved ISO 27001 certification, and has been successfully validated as a Level 1 service provider under the Payment Card Industry (PCI) Data Security Standard (DSS). AWS has obtained a favorable unbiased opinion from its independent auditors. SAS70 certifies that a service organization has had an in-depth audit of its controls (including control objectives and control activities), which in the case of AWS relates to operational performance and security to safeguard customer data. Learn more about our AWS security and compliance here.