Class Action Claims Management is SOC1-SSAE 16 Type II certified. The highest priority at CACM is the security and confidentiality of our client's data. To ensure the integrity of our systems, CACM has undergone the rigorous SOC 1-SSAE 16 Type II (formerly SAS 70 Type II) audit process for the past several years.
CACM has adopted the following policies and procedures to safeguard our clients' data.
CACM utilizes only SOC 1-SSAE 16 Type II certified data centers to host its servers and applications. CACM's SOC 1-SSAE 16 audit also included an audit of the data centers that we utilize.
CACM undergoes an annual penetration testing and security audit performed by an independent third party security firm.
CACM designed, implemented and maintains its networks and affiliated systems in accordance with industry-recognized best practices as set forth in ISO 27001. A “defense in depth” strategy has been employed to minimize exposure due to the failure of one safeguard.
All access to the CACM servers are logged, identified, IP-restricted and encrypted.
All data transfers to our systems are encrypted and done through SSL (for HTTPS) or SSH (for SFTP).
CACM has an extensive Financial Information Security Policy Manual which all employees must study and adhere to.
For additional information on CACM's security policies and procedures please feel free to contact us.